last executing test programs: 10m55.233231766s ago: executing program 2 (id=1941): openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f00000000c0), 0x40200, 0x0) read$auto(0x3, 0x0, 0x80) 10m54.858211694s ago: executing program 2 (id=1949): mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) madvise$auto(0x108000, 0x800034, 0xa) 10m54.691854797s ago: executing program 2 (id=1953): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/afs/addr_prefs\x00', 0x8104, 0x0) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000e80)=""/215, 0xd7) 10m54.478037984s ago: executing program 2 (id=1958): r0 = socket(0x2, 0x3, 0x1) getsockopt$auto_SO_DEBUG(r0, 0xff, 0x1, 0x0, 0x0) 10m54.342188723s ago: executing program 2 (id=1961): tkill$auto(0x1, 0x7) keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x0, 0x0, 0x0, 0x48eafc79) 10m53.9650917s ago: executing program 2 (id=1967): r0 = open(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x2000, 0xb5d1af1605322c72) open_by_handle_at$auto(r0, &(0x7f0000000040)={0x8, 0x10001, "9700000000000000"}, 0x2) 10m53.45659594s ago: executing program 32 (id=1967): r0 = open(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x2000, 0xb5d1af1605322c72) open_by_handle_at$auto(r0, &(0x7f0000000040)={0x8, 0x10001, "9700000000000000"}, 0x2) 9m11.958730367s ago: executing program 3 (id=3915): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop7/trace/act_mask\x00', 0x402, 0x0) write$auto(r0, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4) 9m11.715177389s ago: executing program 3 (id=3920): r0 = pidfd_open$auto(0x1, 0x0) pidfd_send_signal$auto_PIDFD_SIGNAL_THREAD_GROUP(r0, 0x8, 0x0, 0x2) 9m11.533797851s ago: executing program 3 (id=3925): r0 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000003c0), 0x101200, 0x0) poll$auto(&(0x7f0000000400)={r0, 0x4, 0x7}, 0x6, 0x7) 9m11.360266333s ago: executing program 3 (id=3929): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x40000, 0x0) pread64$auto(r0, &(0x7f0000000040)='/dev/tty0\x00', 0x3, 0x7) 9m11.240338821s ago: executing program 3 (id=3933): ioperm$auto(0xd44, 0x6, 0x8) tkill$auto(0x80000000000001, 0x7) 9m10.836007431s ago: executing program 3 (id=3940): unshare$auto(0x40000080) write$auto(0xca, &(0x7f0000000180)='\x04\x02\x00\r\xfb\xff\xf6\xdd\x90\x806\xc8\xbe\x94\xf2\xa2', 0x9) 9m10.498220083s ago: executing program 33 (id=3940): unshare$auto(0x40000080) write$auto(0xca, &(0x7f0000000180)='\x04\x02\x00\r\xfb\xff\xf6\xdd\x90\x806\xc8\xbe\x94\xf2\xa2', 0x9) 28.561878388s ago: executing program 0 (id=10770): r0 = socket(0x2d, 0x2, 0x0) mmap$auto(0x0, 0x2009, 0x4000000020df, 0xeb1, r0, 0x8000) bind$auto(0x3, 0x0, 0x6a) 28.338931904s ago: executing program 0 (id=10773): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) mprotect$auto(0x1ffff000, 0x8000000000000007, 0x100000c) 27.837993671s ago: executing program 0 (id=10779): r0 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0xe4, r0, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@HWSIM_ATTR_RADIO_NAME={0xd0, 0x11, 'u)(\xa0\xb66s\xec\xbe\f\x19\"\xbfW:L\x15\x94\x1a\x06\xb27\b\xb7;\x1eF\xe0 .\xdfB\xbb\xe11\xea\xfdX\x95\xa5\x01\xd62\xf4E\xa5O\x1a\x950\xacJkD\xa39\x11\x11\xb4\xb1,>\xc7\xf97=\xe7\x98\xa9\xefPq\'\xc9\x8doJ$2\xae\xd1\xeaF\xd7os7\xffr\n#\x00\x00\x04\x00\xc3\x9fx\a\xc3f\xb1\xc1i\xa4\xaf8y\xf2\x0f\xa3\xcaa\xaf%\xe1\xd3j;U\xd8t\xc9\xf7\xbf\xbf\xb4$\xbb\x8eM\x17c\x9c\xc2\xbfn\x83\r\xcbY\xb4O(\x05[\x90\x9di\xbb\xd3oC\x1f\a\xd7\x1f\xeb\xb1pBr\x8e\a<\xa7?\x05\xf7UI\x92\xa4pt\x9b\xee\x904\x91\xd8\xa4\xcb\x83o\\\xdf&\xae\xe8\xe9\x80nmy\xf0\r[:\xf2\xf3\x1f\x1d\xa4'}]}, 0xe4}, 0x1, 0x0, 0x0, 0x40c8}, 0x4048000) 27.47725276s ago: executing program 0 (id=10785): mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) sysfs$auto(0x2, 0x9, 0x0) fsopen$auto(0x0, 0x1) 27.242094811s ago: executing program 0 (id=10788): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}}) 26.556979631s ago: executing program 0 (id=10798): openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) mmap$auto(0x0, 0x4000005, 0xfffffffffffffe01, 0x8051, 0x3, 0x10000000008000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) 26.118594259s ago: executing program 34 (id=10798): openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) mmap$auto(0x0, 0x4000005, 0xfffffffffffffe01, 0x8051, 0x3, 0x10000000008000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) 25.888106965s ago: executing program 4 (id=10805): openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000040)='/dev/usbmon13\x00', 0x2000, 0x0) mmap$auto(0x0, 0x4000005, 0xfffffffffffffe01, 0x8051, 0x3, 0x10000000008000) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 25.105858476s ago: executing program 4 (id=10816): socket(0x1d, 0x3, 0x1) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, 0x0, 0xfd}, 0x6a) bind$auto(0x3, &(0x7f0000000040)=@can, 0x6a) 23.941162305s ago: executing program 4 (id=10817): sendmsg$auto_NFC_CMD_DISABLE_SE(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000240)={0xb8, 0x0, 0x20, 0x70bd27, 0x25dfdbfb, {}, [@NFC_ATTR_LLC_SDP={0xa2, 0x13, 0x0, 0x1, [@generic="56cbfa42c40766659aa29e5e977fd8c0c5ea07452724775bbe2a991a68ffcde27d30d9539f5af41857c946a10ab75d4455ff05a8c7e2dd82a1b193c14603e7d524459341b3e50ef2aa9f0036e435055f7ced71ecabd242d2772183e1ecccd5862bebfb0c8f2d4aeb08712114c79f828805a9f502ad2cf56faf93edaa4aed6a9f231f9ebe64ef8a62707c3d2a42aedbf90b43fa34f4d09b7d0ddf85188101"]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x8800}, 0x40404c8) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) write$auto(r0, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) 23.504702918s ago: executing program 4 (id=10821): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x1c, r0, 0x13, 0x70bd26, 0x25dfdbdd, {}, [@NL80211_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004080}, 0x20040894) 23.201188444s ago: executing program 4 (id=10825): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}}) 22.279830886s ago: executing program 4 (id=10833): openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) exit$auto(0x7) read$auto(0x3, 0x0, 0x1f40) 21.756217661s ago: executing program 35 (id=10833): openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) exit$auto(0x7) read$auto(0x3, 0x0, 0x1f40) 2.449453595s ago: executing program 5 (id=10961): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r0, 0x29, 0x20, 0x0, 0x23) 2.249325904s ago: executing program 7 (id=10963): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x20540, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) ioctl$auto(r0, 0x5419, 0x38) 1.987854192s ago: executing program 7 (id=10965): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001440)={0x18, r1, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@HWSIM_ATTR_REG_STRICT_REG={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) 1.987756426s ago: executing program 5 (id=10967): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f000000c180), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_NAME_TABLE_GET(r0, &(0x7f000000ca40)={0x0, 0x0, &(0x7f000000ca00)={&(0x7f000000c1c0)={0x14, r1, 0x35712d2af9a9dbe3, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x841}, 0x4) 1.604953918s ago: executing program 6 (id=10970): close_range$auto(0x0, 0xfffffffffffff000, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x9, 0xb5, 0x1, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0x10) bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@prog_fd, @target_ifindex=r0, 0x3, 0x2, @netfilter={0x4, 0x1, 0x40, 0x7}}, 0x81) 1.405758148s ago: executing program 7 (id=10972): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) r0 = clone$auto(0x21, 0x8cd, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4) process_vm_readv$auto(r0, &(0x7f0000000040)={0x0, 0x8}, 0x4, &(0x7f00000000c0)={0x0, 0x100000000000002}, 0x6, 0x0) 1.379543286s ago: executing program 6 (id=10973): mmap$auto(0x0, 0x20009, 0x4, 0xeb1, 0x401, 0x8000) prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) mprotect$auto(0x0, 0x8, 0x9) 1.148536821s ago: executing program 6 (id=10974): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r0, 0x29, 0x20, 0x0, 0x23) 1.148465412s ago: executing program 5 (id=10975): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/acpi/parameters/ec_event_clearing\x00', 0x129882, 0x0) write$auto(0x3, 0x0, 0x7fffffff) 1.132731992s ago: executing program 1 (id=10976): close_range$auto(0x0, 0xfffffffffffff000, 0x2) open(&(0x7f0000000800)='./file0\x00', 0x2040, 0x0) fcntl$auto(0xff80000000000000, 0x40a, 0x1) 943.100398ms ago: executing program 1 (id=10977): mmap$auto(0x0, 0x5, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) getitimer$auto_ITIMER_VIRTUAL(0x1, 0x0) 926.357789ms ago: executing program 6 (id=10978): mmap$auto(0x0, 0x400008, 0xe3, 0x9b72, 0xffffffff, 0x8000) madvise$auto(0x0, 0x3, 0x66) madvise$auto(0x0, 0x4, 0x3) 782.174867ms ago: executing program 5 (id=10979): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/sys/net/ipv4/conf/all/proxy_arp\x00', 0x88302, 0x0) sendfile$auto(r1, r0, 0x0, 0x48) 715.096863ms ago: executing program 1 (id=10980): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000600), r0) sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000640)={0x20, r1, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@IOAM6_ATTR_SC_NONE={0x4}, @IOAM6_ATTR_NS_ID={0x6, 0x1, 0x4a}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x80) 540.317742ms ago: executing program 1 (id=10981): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x5, 0x0) setsockopt$auto(0x3, 0x10000000084, 0xa, 0x0, 0x20) 518.552295ms ago: executing program 7 (id=10982): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f000000c180), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_NAME_TABLE_GET(r0, &(0x7f000000ca40)={0x0, 0x0, &(0x7f000000ca00)={&(0x7f000000c1c0)={0x14, r1, 0x35712d2af9a9dbe3, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x841}, 0x4) 407.158274ms ago: executing program 5 (id=10983): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_EEE_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x2c, r1, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@ETHTOOL_A_EEE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40800}, 0x8040) 379.832062ms ago: executing program 6 (id=10984): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000001140), r0) sendmsg$auto_WG_CMD_SET_DEVICE(r0, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000001940)={0x34, r1, 0x21, 0x70bd27, 0x25dfdc00, {}, [@WGDEVICE_A_PEERS={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0xe7, 0x0, 0x0, @fd}]}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x34}}, 0x80) 323.78596ms ago: executing program 1 (id=10985): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) readv$auto(r0, &(0x7f00000000c0)={0x0, 0x5}, 0x3) ioctl$auto_TIOCVHANGUP2(r0, 0x5437, 0x0) 273.891835ms ago: executing program 7 (id=10986): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) ioctl$auto(0x3, 0x5411, 0x10000000000402) 76.292251ms ago: executing program 7 (id=10987): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r0, 0x29, 0x20, 0x0, 0x23) 75.753777ms ago: executing program 6 (id=10995): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(r0, 0x22, &(0x7f0000000000), 0x20000001) 14.068391ms ago: executing program 1 (id=10988): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) setrlimit$auto(0x8, 0x0) mmap$auto(0x7fffffffe000, 0x61, 0x100001000000004, 0xfa31, 0x403, 0x8000) 0s ago: executing program 5 (id=10989): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card1/pcm0c/oss\x00', 0x40c01, 0x0) write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000480)="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", 0x113) close_range$auto(0x2, 0x8, 0x0) kernel console output (not intermixed with test programs): set [1, 0] type 2 family 0 port 6081 - 0 [ 110.433515][ T5846] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.443115][ T5846] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.455888][ T5846] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.476169][ T5851] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 110.523023][ T5856] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 110.551699][ T5849] veth0_vlan: entered promiscuous mode [ 110.594976][ T5849] veth1_vlan: entered promiscuous mode [ 110.684353][ T5851] veth0_vlan: entered promiscuous mode [ 110.721411][ T5851] veth1_vlan: entered promiscuous mode [ 110.738353][ T5112] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.756630][ T5112] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.803979][ T5849] veth0_macvtap: entered promiscuous mode [ 110.815409][ T5856] veth0_vlan: entered promiscuous mode [ 110.840333][ T5849] veth1_macvtap: entered promiscuous mode [ 110.853065][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.857070][ T5856] veth1_vlan: entered promiscuous mode [ 110.879628][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.929481][ T5849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 110.942506][ T5849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.954925][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 110.965682][ T5851] veth0_macvtap: entered promiscuous mode [ 111.023448][ T5851] veth1_macvtap: entered promiscuous mode [ 111.041796][ T5849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 111.053956][ T5849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.066612][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 111.089413][ T5856] veth0_macvtap: entered promiscuous mode [ 111.091549][ T5846] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 111.121540][ T5849] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.131998][ T5849] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.140972][ T5849] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.151456][ T5849] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.181800][ T5856] veth1_macvtap: entered promiscuous mode [ 111.217159][ T5851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 111.251783][ T5851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.268556][ T5851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 111.279500][ T5851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.292279][ T5851] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 111.323742][ T5851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 111.335272][ T5851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.357641][ T5851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 111.379692][ T5851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.397824][ T5851] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 111.432465][ T5851] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.441579][ T5851] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.473490][ T55] Bluetooth: hci0: command tx timeout [ 111.485412][ T5851] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.498512][ T5851] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.507804][ T55] Bluetooth: hci0: unexpected event 0x36 length: 123 > 7 [ 111.511738][ T5856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 111.531461][ T5856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.541687][ T5856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 111.567367][ T5856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.578532][ T5856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 111.592054][ T5856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.606334][ T5856] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 111.630036][ T55] Bluetooth: hci1: command tx timeout [ 111.644208][ T5856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 111.656940][ T5856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.668729][ T5856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 111.679647][ T5856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.689853][ T5856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 111.702553][ T5856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.714581][ T55] Bluetooth: hci2: command tx timeout [ 111.722093][ T5856] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 111.756774][ T5856] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.776748][ T5856] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.786938][ T5856] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.798419][ T5856] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.868160][ T55] Bluetooth: hci3: command tx timeout [ 111.921558][ T3476] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.933442][ T3476] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.066572][ T5112] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.087884][ T5112] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.144830][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.162908][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.233562][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.254497][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.319259][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.327150][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.475455][ T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.516707][ T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.552075][ T55] Bluetooth: hci0: command tx timeout [ 113.708623][ T55] Bluetooth: hci1: command tx timeout [ 113.788211][ T55] Bluetooth: hci2: command tx timeout [ 113.948411][ T55] Bluetooth: hci3: command tx timeout [ 115.042132][ T6009] nfs: Bad value for 'source' [ 116.313753][ T6056] capability: warning: `syz.2.74' uses deprecated v2 capabilities in a way that may be insecure [ 116.847411][ T30] audit: type=1800 audit(1745211754.214:2): pid=6075 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.83" name="dummy_udc" dev="gadgetfs" ino=6183 res=0 errno=0 [ 119.287717][ T6165] mmap: syz.2.129 (6165) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 119.430093][ T30] audit: type=1800 audit(1745211756.804:3): pid=6169 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.131" name="dummy_udc" dev="gadgetfs" ino=6183 res=0 errno=0 [ 120.079462][ T30] audit: type=1800 audit(1745211757.454:4): pid=6195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.143" name="dummy_udc" dev="gadgetfs" ino=6183 res=0 errno=0 [ 120.808059][ T30] audit: type=1800 audit(1745211758.174:5): pid=6221 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.155" name="dummy_udc" dev="gadgetfs" ino=6183 res=0 errno=0 [ 124.821357][ T6366] syz.0.228(6366): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 128.932619][ T30] audit: type=1800 audit(1745211766.304:6): pid=6510 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.296" name="members" dev="configfs" ino=9393 res=0 errno=0 [ 129.192357][ T6516] Unable to find swap-space signature [ 134.471321][ T30] audit: type=1800 audit(1745212794.837:7): pid=6680 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.383" name="trace_pipe" dev="tracefs" ino=238 res=0 errno=0 [ 135.904577][ T6728] ptrace attach of "./syz-executor exec"[5849] was attempted by "./syz-executor exec"[6728] [ 137.957609][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 137.964925][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 144.884164][ T7003] syz.3.537 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 146.006004][ T7037] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 147.079067][ T7073] Unable to find swap-space signature [ 147.185517][ T7027] kexec: Could not allocate control_code_buffer [ 151.422447][ T7192] kexec: Could not allocate control_code_buffer [ 154.569898][ T7261] kexec: Could not allocate control_code_buffer [ 155.404489][ T30] audit: type=1326 audit(1028.798:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7359 comm="syz.0.715" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbdefb8e169 code=0x0 [ 157.062181][ T7358] kexec: Could not allocate control_code_buffer [ 158.704506][ T30] audit: type=1800 audit(1032.086:9): pid=7457 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.762" name="lu_gp_id" dev="configfs" ino=10886 res=0 errno=0 [ 159.268955][ T7426] kexec: Could not allocate control_code_buffer [ 160.036820][ T30] audit: type=1800 audit(1033.426:10): pid=7506 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.788" name="members" dev="configfs" ino=10953 res=0 errno=0 [ 164.084263][ T55] Bluetooth: hci0: Malformed LE Event: 0x0b [ 169.154504][ T55] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 169.173118][ T7869] futex_wake_op: syz.3.967 tries to shift op by 64; fix this program [ 171.352725][ T7953] Process accounting resumed [ 171.678966][ T7964] Process accounting resumed [ 172.828307][ T8013] ptrace attach of "./syz-executor exec"[5849] was attempted by "./syz-executor exec"[8013] [ 174.032795][ T30] audit: type=1800 audit(4294968343.424:11): pid=8057 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1059" name="SYSV00000014" dev="hugetlbfs" ino=0 res=0 errno=0 [ 174.913398][ T8093] Process accounting resumed [ 177.600389][ T8213] ima: policy update failed [ 177.608212][ T30] audit: type=1802 audit(4294969373.989:12): pid=8213 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1137" res=0 errno=0 [ 179.921660][ T30] audit: type=1800 audit(4294969376.309:13): pid=8307 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1183" name="version" dev="configfs" ino=14380 res=0 errno=0 [ 182.714985][ T8416] ======================================================= [ 182.714985][ T8416] WARNING: The mand mount option has been deprecated and [ 182.714985][ T8416] and is ignored by this kernel. Remove the mand [ 182.714985][ T8416] option from the mount to silence this warning. [ 182.714985][ T8416] ======================================================= [ 185.027946][ T30] audit: type=1800 audit(4294967298.520:14): pid=8516 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1287" name="dbroot" dev="configfs" ino=14691 res=0 errno=0 [ 185.121617][ T8520] random: crng reseeded on system resumption [ 188.670626][ T8675] syz_tun: tun_chr_ioctl cmd 2147767521 [ 190.399021][ T30] audit: type=1800 audit(4294967303.910:15): pid=8760 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1406" name="discovery_nqn" dev="configfs" ino=15046 res=0 errno=0 [ 190.738078][ T8774] random: crng reseeded on system resumption [ 191.576588][ T55] Bluetooth: hci3: unexpected event 0x23 length: 127 > 13 [ 194.065690][ T30] audit: type=1326 audit(4294969355.573:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8930 comm="syz.3.1492" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa392f8e169 code=0x0 [ 194.551848][ T55] Bluetooth: hci0: unexpected subevent 0x03 length: 253 > 9 [ 199.386245][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.392644][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 201.440783][ T9289] Process accounting paused [ 201.708432][ T9303] can: request_module (can-proto-3) failed. [ 201.910963][ T55] Bluetooth: hci3: unexpected event 0x20 length: 123 > 7 [ 204.070600][ T9420] program syz.0.1734 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 204.107923][ T9420] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 204.472235][ T55] Bluetooth: hci3: Unable to find connection for big 0xd2 [ 206.238984][ T9510] sg_write: data in/out 3292/1 bytes for SCSI command 0xa3-- guessing data in; [ 206.238984][ T9510] program syz.1.1776 not setting count and/or reply_len properly [ 206.556407][ T9526] Setting dangerous option i915.mitigations - tainting kernel [ 206.565499][ T9526] Bad "i915.mitigations=$", '$' is unknown [ 207.511990][ T9569] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 208.141068][ T5882] Process accounting resumed [ 208.146144][ T9598] program syz.3.1821 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 208.207896][ T9598] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 208.293662][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 208.301834][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 208.642733][ T5847] Bluetooth: hci1: Unable to find connection for big 0xd2 [ 208.894814][ T9631] program syz.1.1836 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 208.924328][ T9631] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 210.714498][ T9709] syz.3.1872 (9709): drop_caches: 0 [ 211.046139][ T9721] ubi0: attaching mtd0 [ 211.056906][ T9721] ubi0: scanning is finished [ 211.062140][ T9721] ubi0: empty MTD device detected [ 211.067601][ T9721] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 211.226319][ T9721] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 214.012462][ T9855] synth uevent: /module/qat_c62x: unknown uevent action string [ 215.245143][ T53] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.406020][ T53] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.536349][ T53] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.782923][ T53] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 216.215794][ T53] bridge_slave_1: left allmulticast mode [ 216.238576][ T53] bridge_slave_1: left promiscuous mode [ 216.272247][ T53] bridge0: port 2(bridge_slave_1) entered disabled state [ 216.413641][ T53] bridge_slave_0: left allmulticast mode [ 216.441480][ T53] bridge_slave_0: left promiscuous mode [ 216.452898][ T55] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 216.461832][ T55] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 216.470198][ T55] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 216.480475][ T55] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 216.489383][ T55] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 216.507046][ T53] bridge0: port 1(bridge_slave_0) entered disabled state [ 216.809395][ T5847] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 216.850535][ T9945] sysfs_service_op_show: Client not running :-5: [ 217.526927][ T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 217.558691][ T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 217.575939][ T53] bond0 (unregistering): Released all slaves [ 217.903640][ T30] audit: type=1800 audit(4294969391.531:17): pid=9981 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2001" name="lu_gp_id" dev="configfs" ino=19179 res=0 errno=0 [ 217.908189][ T9981] kstrtoul() returned -22 for lu_gp_id [ 218.431887][ T53] hsr_slave_0: left promiscuous mode [ 218.470579][ T53] hsr_slave_1: left promiscuous mode [ 218.491575][ T53] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 218.513086][ T53] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 218.540877][ T53] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 218.555288][ T53] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 218.562706][ T5847] Bluetooth: hci2: command tx timeout [ 218.624227][ T53] veth1_macvtap: left promiscuous mode [ 218.630242][ T53] veth0_macvtap: left promiscuous mode [ 218.639316][ T53] veth1_vlan: left promiscuous mode [ 218.644832][ T53] veth0_vlan: left promiscuous mode [ 219.035173][T10025] Malformed UNC in devname [ 219.035173][T10025] [ 219.042142][T10025] CIFS: VFS: Malformed UNC in devname [ 219.690633][ T53] team0 (unregistering): Port device team_slave_1 removed [ 219.772478][ T53] team0 (unregistering): Port device team_slave_0 removed [ 220.541142][T10067] Setting dangerous option i915.mitigations - tainting kernel [ 220.639037][ T5847] Bluetooth: hci2: command tx timeout syzkaller syzkaller login: [ 220.951607][ T9926] chnl_net:caif_netlink_parms(): no params data found [ 221.086854][T10082] sysfs_service_op_show: Client not running :-5: [ 221.350130][ T9926] bridge0: port 1(bridge_slave_0) entered blocking state [ 221.375712][ T9926] bridge0: port 1(bridge_slave_0) entered disabled state [ 221.394597][ T9926] bridge_slave_0: entered allmulticast mode [ 221.412972][ T9926] bridge_slave_0: entered promiscuous mode [ 221.449622][ T9926] bridge0: port 2(bridge_slave_1) entered blocking state [ 221.467894][ T9926] bridge0: port 2(bridge_slave_1) entered disabled state [ 221.483600][ T9926] bridge_slave_1: entered allmulticast mode [ 221.512342][ T9926] bridge_slave_1: entered promiscuous mode [ 221.645378][ T9926] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 221.672892][ T9926] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 221.827637][ T9926] team0: Port device team_slave_0 added [ 221.865321][ T9926] team0: Port device team_slave_1 added [ 221.980668][ T9926] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 221.999302][ T9926] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 222.040051][ T9926] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 222.106362][ T9926] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 222.118329][ T9926] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 222.145547][ T9926] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 222.288239][ T9926] hsr_slave_0: entered promiscuous mode [ 222.307398][ T9926] hsr_slave_1: entered promiscuous mode [ 222.313826][ T9926] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 222.336280][ T9926] Cannot create hsr debugfs directory [ 222.694398][ T5847] Bluetooth: hci2: command tx timeout [ 222.841016][ T9926] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 222.875377][ T9926] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 222.896720][ T9926] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 222.935316][ T9926] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 223.219473][ T9926] 8021q: adding VLAN 0 to HW filter on device bond0 [ 223.294895][ T9926] 8021q: adding VLAN 0 to HW filter on device team0 [ 223.347334][ T5112] bridge0: port 1(bridge_slave_0) entered blocking state [ 223.354586][ T5112] bridge0: port 1(bridge_slave_0) entered forwarding state [ 223.431044][ T5112] bridge0: port 2(bridge_slave_1) entered blocking state [ 223.438315][ T5112] bridge0: port 2(bridge_slave_1) entered forwarding state [ 224.102849][ T9926] 8021q: adding VLAN 0 to HW filter on device batadv0 syzkaller syzkaller login: [ 224.763787][ T5847] Bluetooth: hci2: command tx timeout [ 224.899002][T10228] delete_channel: no stack [ 225.077198][ T9926] veth0_vlan: entered promiscuous mode [ 225.169445][ T9926] veth1_vlan: entered promiscuous mode [ 225.202190][ T30] audit: type=1800 audit(4294969398.879:18): pid=10238 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2091" name="discovery_nqn" dev="configfs" ino=21564 res=0 errno=0 [ 225.316187][ T9926] veth0_macvtap: entered promiscuous mode [ 225.347384][ T9926] veth1_macvtap: entered promiscuous mode [ 225.436686][ T9926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 225.455534][ T9926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 225.466499][ T9926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 225.488122][ T9926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 225.506168][ T9926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 225.531879][ T9926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 225.566859][ T9926] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 225.633831][ T9926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 225.662108][ T9926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 225.688688][ T9926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 225.709035][ T9926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 225.747003][ T9926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 225.768460][ T9926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 225.790334][ T9926] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 225.819796][ T9926] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 225.857788][ T9926] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 225.866569][ T9926] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 225.917514][ T9926] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 226.147906][T10276] queue_state_write: unsupported operation '' [ 226.154301][T10276] queue_state_write: use 'run', 'start' or 'kick' [ 226.210453][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 226.231914][T10279] syz.3.2105 uses obsolete (PF_INET,SOCK_PACKET) [ 226.237724][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 226.322714][ T139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 226.334390][ T139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 231.328129][T10488] Process accounting resumed [ 232.016525][T10431] Bluetooth: hci0: command 0x0406 tx timeout [ 232.022704][T10431] Bluetooth: hci1: command 0x0406 tx timeout [ 232.029181][T10431] Bluetooth: hci3: command 0x0406 tx timeout [ 232.921312][T10563] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 235.104413][T10667] kafs: addr_prefs: Invalid Command [ 235.401306][T10683] : Can't lookup blockdev [ 235.738202][ T30] audit: type=1400 audit(4294969409.464:19): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=10701 comm="syz.4.2286" [ 235.792130][T10699] Invalid ELF header magic: != ELF [ 238.309593][T10826] Setting dangerous option i915.mitigations - tainting kernel [ 240.414841][T10936] synth uevent: /bus/hid/drivers/zeroplus: unknown uevent action string [ 241.527874][ T5847] Bluetooth: hci2: Malformed Event: 0x13 [ 243.175397][T11073] bond0: option mode: unable to set because the bond device is up [ 245.115771][ T30] audit: type=1806 audit(4294969418.883:20): res=-14 [ 249.733865][T11373] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26) [ 249.734765][T11372] ima: policy update failed [ 249.772850][ T30] audit: type=1802 audit(4294969423.567:21): pid=11372 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2555" res=0 errno=0 [ 256.660091][T11651] aoe: invalid device specification [ 256.755676][T11654] process 'syz.3.2692' launched '/dev/fd/3' with NULL argv: empty string added [ 256.932489][ T30] audit: type=1800 audit(4294969430.764:22): pid=11666 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2695" name="dbroot" dev="configfs" ino=25761 res=0 errno=0 [ 256.962427][T11666] db_root: cannot open: [ 257.140091][T11675] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 260.502187][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.508753][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 261.148431][T11827] syz_tun: tun_chr_ioctl cmd 2147767511 [ 261.215900][T11827] Process accounting paused [ 264.112267][ T5847] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 264.112310][ T5847] Bluetooth: hci0: unexpected subevent 0x05 length: 725 > 12 [ 265.226494][T11981] bond0: no command found in slaves file - use +ifname or -ifname [ 266.159027][ T5847] Bluetooth: hci0: command 0x0406 tx timeout [ 266.763284][T12047] kAFS: No cell specified [ 269.206957][T12140] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1048706]. [ 269.545776][T12154] zswap: compressor Ȯ9Qz%;0*lH`Bkjwjӳ<85'.Y[`2Y$`Yvgִq"b%zN[O EiFi(Sh3Kx>ԝRS=kHɟ{?Bbޝ4)> not available [ 270.787323][T12218] block nbd8: NBD_DISCONNECT [ 271.904389][T12273] syz_tun: tun_chr_ioctl cmd 2147767507 [ 272.191525][ T30] audit: type=1800 audit(4294969446.093:23): pid=12286 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3001" name="dbroot" dev="configfs" ino=27702 res=0 errno=0 [ 272.192921][T12286] db_root: not a directory: /dev/audio1 [ 273.172089][T12336] mmap: syz.3.3025 (12336): VmData 37601280 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 274.613911][T12404] sysfs_service_op_store: Client not running :-5: [ 278.350161][ T30] audit: type=1400 audit(4294969452.285:24): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=12527 comm="syz.4.3119" [ 282.495484][T12677] block2mtd: device name too long [ 284.728379][T12771] i2c i2c-0: new_device: Missing parameters [ 285.205203][T12799] block2mtd: device name too long [ 288.073904][T12910] page: refcount:8 mapcount:0 mapping:0000000000000000 index:0xffff888079016000 pfn:0x79010 [ 288.098606][T12910] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 288.117636][T12910] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 288.141396][T12910] raw: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 288.160483][T12910] raw: ffff888079016000 0000000000000000 00000008ffffffff 0000000000000000 [ 288.179341][T12910] head: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 288.203859][T12910] head: ffff888079016000 0000000000000000 00000008ffffffff 0000000000000000 [ 288.223597][T12910] head: 00fff00000000003 ffffea0001e40401 00000000ffffffff 00000000ffffffff [ 288.238639][T12910] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 288.261184][T12910] page dumped because: unmovable page [ 288.282471][T12910] page_owner tracks the page as allocated [ 288.303218][T12910] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5825, tgid 5825 (sshd), ts 84092115223, free_ts 67676392854 [ 288.327770][T12910] register_dummy_stack+0x89/0xd0 [ 288.327870][T12910] init_page_owner+0x48/0xc30 [ 288.327904][T12910] page_ext_init+0x6b8/0xab0 [ 288.327951][T12910] mm_core_init+0x13c/0x220 [ 288.328001][T12910] page last free pid 5638 tgid 5638 stack trace: [ 288.328055][T12910] __free_frozen_pages+0x69d/0xff0 [ 288.328090][T12910] __put_partials+0x16d/0x1c0 [ 288.328135][T12910] qlist_free_all+0x4e/0x120 [ 288.328185][T12910] kasan_quarantine_reduce+0x195/0x1e0 [ 288.328223][T12910] __kasan_slab_alloc+0x69/0x90 [ 288.328262][T12910] kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 288.328301][T12910] getname_flags.part.0+0x4c/0x550 [ 288.328347][T12910] getname_flags+0x93/0xf0 [ 288.328375][T12910] do_sys_openat2+0xb8/0x1d0 [ 288.328421][T12910] __x64_sys_openat+0x174/0x210 [ 288.328468][T12910] do_syscall_64+0xcd/0x230 [ 288.328517][T12910] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.720563][T13038] kAFS: Invalid Command on /proc/fs/afs/cells file [ 291.079909][T13049] Process accounting resumed [ 291.366602][T13069] usbip-vudc usbip-vudc.0: gadget not bound [ 292.747683][T13127] page: refcount:8 mapcount:0 mapping:0000000000000000 index:0xffff888079016000 pfn:0x79010 [ 292.771115][T13127] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 292.793209][T13127] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 292.809955][T13127] raw: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 292.838736][T13127] raw: ffff888079016000 0000000000000000 00000008ffffffff 0000000000000000 [ 292.859403][T13127] head: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 292.868164][T13127] head: ffff888079016000 0000000000000000 00000008ffffffff 0000000000000000 [ 292.902237][T13127] head: 00fff00000000003 ffffea0001e40401 00000000ffffffff 00000000ffffffff [ 292.922858][T13127] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 292.938872][T13127] page dumped because: unmovable page [ 292.949774][T13127] page_owner tracks the page as allocated [ 292.966467][T13127] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5825, tgid 5825 (sshd), ts 84092115223, free_ts 67676392854 [ 293.008738][T13127] register_dummy_stack+0x89/0xd0 [ 293.015587][T13127] init_page_owner+0x48/0xc30 [ 293.031751][T13127] page_ext_init+0x6b8/0xab0 [ 293.036522][T13127] mm_core_init+0x13c/0x220 [ 293.049778][T13127] page last free pid 5638 tgid 5638 stack trace: [ 293.080797][T13127] __free_frozen_pages+0x69d/0xff0 [ 293.086104][T13127] __put_partials+0x16d/0x1c0 [ 293.101700][T13127] qlist_free_all+0x4e/0x120 [ 293.108056][T13127] kasan_quarantine_reduce+0x195/0x1e0 [ 293.117064][T13127] __kasan_slab_alloc+0x69/0x90 [ 293.125498][T13127] kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 293.131381][T13127] getname_flags.part.0+0x4c/0x550 [ 293.136779][T13127] getname_flags+0x93/0xf0 [ 293.143522][T13127] do_sys_openat2+0xb8/0x1d0 [ 293.151413][T13127] __x64_sys_openat+0x174/0x210 [ 293.161226][T13127] do_syscall_64+0xcd/0x230 [ 293.165893][T13127] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 293.951950][ T30] audit: type=1800 audit(4294969467.977:25): pid=13174 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3435" name="discovery_nqn" dev="configfs" ino=30149 res=0 errno=0 [ 294.198876][T13179] kAFS: Invalid Command on /proc/fs/afs/cells file [ 294.914490][T13212] program syz.1.3453 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 299.378043][T13364] bond0: Unable to set down delay as MII monitoring is disabled [ 302.051712][T13493] block2mtd: illegal erase size [ 304.288323][T13570] kafs: addr_prefs: Invalid Command [ 305.011463][T13596] kAFS: unparsable volume name [ 307.171863][T13689] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 308.211800][T13739] usb usb2: usbfs: process 13739 (syz.3.3706) did not claim interface 1 before use [ 308.273204][T13742] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 311.480063][ T5847] Bluetooth: hci0: Malformed Event: 0x02 [ 313.240228][T13986] WARNING! power/level is deprecated; use power/control instead [ 313.500287][T13999] ima: policy update failed [ 313.535245][ T30] audit: type=1802 audit(4294969487.668:26): pid=13999 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.3831" res=0 errno=0 [ 313.569745][T14004] i2c i2c-0: delete_device: Extra parameters [ 313.936991][T14020] Ignoring unsupported numa_zonelist_order value: [ 313.936991][T14020] [ 315.090804][T14080] ima: policy update failed [ 315.099229][ T30] audit: type=1802 audit(4294969489.237:27): pid=14080 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.3871" res=0 errno=0 [ 315.390025][T14091] Invalid input. Must be >= 4608 [ 316.198225][T14133] ecryptfs_miscdev_write: memdup_user returned error [-14] [ 318.213526][ T139] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 318.346485][ T139] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 318.478337][ T139] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 318.658147][ T139] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 319.053541][ T139] bridge_slave_1: left allmulticast mode [ 319.059246][ T139] bridge_slave_1: left promiscuous mode [ 319.108592][ T139] bridge0: port 2(bridge_slave_1) entered disabled state [ 319.154148][ T139] bridge_slave_0: left allmulticast mode [ 319.159868][ T139] bridge_slave_0: left promiscuous mode [ 319.186358][ T139] bridge0: port 1(bridge_slave_0) entered disabled state [ 319.210500][ T5852] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 319.227855][ T5852] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 319.239315][ T5852] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 319.255684][ T5852] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 319.273410][ T5852] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 320.222984][ T139] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 320.251803][ T139] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 320.280995][ T139] bond0 (unregistering): Released all slaves [ 320.947465][ T139] hsr_slave_0: left promiscuous mode [ 320.969100][ T139] hsr_slave_1: left promiscuous mode [ 320.986762][ T139] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 321.004024][ T139] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 321.012477][ T139] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 321.022325][ T139] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 321.104223][ T139] veth1_macvtap: left promiscuous mode [ 321.122530][ T139] veth0_macvtap: left promiscuous mode [ 321.128278][ T139] veth1_vlan: left promiscuous mode [ 321.162289][ T139] veth0_vlan: left promiscuous mode [ 321.301527][ T5852] Bluetooth: hci1: command tx timeout [ 321.418896][T14340] Setting dangerous option i915.mitigations - tainting kernel [ 321.626364][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 321.638662][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 322.670928][ T139] team0 (unregistering): Port device team_slave_1 removed [ 322.776156][ T139] team0 (unregistering): Port device team_slave_0 removed [ 323.370820][ T5852] Bluetooth: hci1: command tx timeout [ 324.350029][T14248] chnl_net:caif_netlink_parms(): no params data found [ 324.427615][T14459] aoe: can't write to that file. [ 324.831181][T14248] bridge0: port 1(bridge_slave_0) entered blocking state [ 324.843189][T14248] bridge0: port 1(bridge_slave_0) entered disabled state [ 324.850452][T14248] bridge_slave_0: entered allmulticast mode [ 324.893111][T14248] bridge_slave_0: entered promiscuous mode [ 324.916513][T14248] bridge0: port 2(bridge_slave_1) entered blocking state [ 324.941188][T14248] bridge0: port 2(bridge_slave_1) entered disabled state [ 324.968363][T14248] bridge_slave_1: entered allmulticast mode [ 324.980130][T14248] bridge_slave_1: entered promiscuous mode [ 325.179591][T14248] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 325.250658][T14248] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 325.440187][ T5852] Bluetooth: hci1: command tx timeout [ 325.453865][T14248] team0: Port device team_slave_0 added [ 325.477537][T14248] team0: Port device team_slave_1 added [ 325.621984][T14248] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 325.631548][T14248] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 325.665108][T14248] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 325.709362][T14248] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 325.716461][T14248] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 325.774573][T14248] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 325.995534][T14248] hsr_slave_0: entered promiscuous mode [ 326.024825][T14248] hsr_slave_1: entered promiscuous mode [ 326.036435][T14248] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 326.051427][T14248] Cannot create hsr debugfs directory [ 326.815222][T14248] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 326.848400][T14248] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 326.871339][T14248] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 326.906416][T14248] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 327.266846][T14248] 8021q: adding VLAN 0 to HW filter on device bond0 [ 327.347325][T14248] 8021q: adding VLAN 0 to HW filter on device team0 [ 327.375992][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 327.383231][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 327.453769][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 327.461005][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 327.509544][ T5852] Bluetooth: hci1: command tx timeout [ 327.627814][T14248] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 328.101103][T14248] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 328.713355][T14632] ecryptfs_miscdev_write: Invalid packet size [192] [ 328.920346][T14248] veth0_vlan: entered promiscuous mode [ 328.966185][T14248] veth1_vlan: entered promiscuous mode [ 329.096985][T14248] veth0_macvtap: entered promiscuous mode [ 329.151689][T14248] veth1_macvtap: entered promiscuous mode [ 329.234612][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 329.250153][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 329.268796][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 329.279794][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 329.299880][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 329.319806][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 329.364511][T14248] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 329.391287][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 329.429230][ T5852] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 329.429275][ T5852] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 329.444371][ T5852] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 329.444456][ T5852] Bluetooth: hci3: Malformed LE Event: 0x0d [ 329.474013][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 329.484542][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 329.495177][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 329.505916][T14248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 329.516549][T14248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 329.530438][T14248] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 329.542398][T14248] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 329.551281][T14248] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 329.568564][T14248] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 329.577663][T14248] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 329.898195][ T139] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 329.932133][ T139] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 330.067949][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 330.087610][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 333.090872][T14811] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed. [ 333.618437][T14833] i2c i2c-0: delete_device: Can't parse I2C address [ 334.588114][ T5852] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 336.273383][T14947] warning: `syz.5.4229' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 336.651412][ T5852] Bluetooth: hci0: unexpected event 0x3d length: 726 > 14 [ 337.429296][T14994] blkio.reset_stats is deprecated [ 338.409090][T15034] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 338.546355][T15034] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 338.687945][T15034] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 338.838367][T15034] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 338.975292][ T5847] Bluetooth: hci2: command 0x0406 tx timeout [ 339.583781][T15081] program syz.5.4285 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 339.593520][T15081] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 340.561231][ T5839] smpboot: CPU 1 is now offline [ 341.664597][T15153] ecryptfs_parse_packet_length: Error parsing packet length [ 341.708532][T15153] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 345.187527][T15254] delete_channel: no stack [ 348.815345][T15377] block2mtd: illegal erase size [ 352.509339][T15492] vivid-007: ================= START STATUS ================= [ 352.517267][T15492] vivid-007: Generate PTS: true [ 352.618612][T15492] vivid-007: Generate SCR: true [ 352.623565][T15492] tpg source WxH: 640x360 (Y'CbCr) [ 352.695973][T15492] tpg field: 1 [ 352.717846][T15492] tpg crop: (0,0)/640x360 [ 352.778136][T15492] tpg compose: (0,0)/640x360 [ 352.808119][T15492] tpg colorspace: 8 [ 352.843598][T15492] tpg transfer function: 0/0 [ 352.872403][T15492] tpg Y'CbCr encoding: 0/0 [ 352.918474][T15492] tpg quantization: 0/0 [ 352.953519][T15492] tpg RGB range: 0/2 [ 352.975378][T15492] vivid-007: ================== END STATUS ================== [ 353.334912][ T5847] Bluetooth: hci1: unexpected event 0x02 length: 726 > 260 [ 353.680027][T15529] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 354.242096][T15547] misc userio: Invalid payload size [ 364.011176][T15807] futex_wake_op: syz.4.4578 tries to shift op by 64; fix this program [ 366.531936][T15882] : Can't lookup blockdev [ 368.471858][T15946] rnbd_client L202: map_device: Unknown parameter or missing value '(' [ 373.507342][T16109] vivid-007: ================= START STATUS ================= [ 373.546772][T16109] vivid-007: Enable Output Cropping: true [ 373.612482][T16109] vivid-007: Enable Output Composing: true [ 373.650837][T16109] vivid-007: Enable Output Scaler: true [ 373.677733][T16109] vivid-007: Tx RGB Quantization Range: Automatic [ 373.698150][T16109] vivid-007: Transmit Mode: HDMI [ 373.734990][T16109] vivid-007: Hotplug Present: 0x00000000 [ 373.767058][T16109] vivid-007: RxSense Present: 0x00000000 [ 373.809956][T16109] vivid-007: EDID Present: 0x00000000 [ 373.844661][T16109] vivid-007: ================== END STATUS ================== [ 374.694573][T16143] delete_channel: no stack [ 374.872388][T16148] < [ 380.623147][T16325] udc dummy_udc.0: soft-connect without a gadget driver [ 381.834248][ T30] audit: type=1800 audit(4294967320.441:28): pid=16363 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.4852" name="discovery_nqn" dev="configfs" ino=40649 res=0 errno=0 [ 382.758425][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 382.771918][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 388.258643][T16561] bcache: register_bcache() error : Not a bcache superblock (bad offset) [ 390.195236][T16622] bond0: no command found in slaves file - use +ifname or -ifname [ 394.571282][T16745] QAT: failed to copy from user. [ 395.990153][T16789] vivid-003: ================= START STATUS ================= [ 396.040671][T16789] vivid-003: Radio HW Seek Mode: Bounded [ 396.077204][T16789] vivid-003: Radio Programmable HW Seek: false [ 396.119964][T16789] vivid-003: RDS Rx I/O Mode: Block I/O [ 396.164191][T16789] vivid-003: Generate RBDS Instead of RDS: false [ 396.214812][T16789] vivid-003: RDS Reception: true [ 396.256197][T16789] vivid-003: RDS Program Type: 0 inactive [ 396.278749][T16789] vivid-003: RDS PS Name: inactive [ 396.305650][T16797] program syz.0.5062 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 396.321442][T16789] vivid-003: RDS Radio Text: inactive [ 396.356438][T16789] vivid-003: RDS Traffic Announcement: false inactive [ 396.403534][T16789] vivid-003: RDS Traffic Program: false inactive [ 396.456385][T16789] vivid-003: RDS Music: false inactive [ 396.494334][T16789] vivid-003: ================== END STATUS ================== [ 402.387191][T16958] syz.4.5140 (16958): attempted to duplicate a private mapping with mremap. This is not supported. [ 406.337870][ T30] audit: type=1800 audit(4294967345.068:29): pid=17081 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.5197" name="discovery_nqn" dev="configfs" ino=42918 res=0 errno=0 [ 406.854595][ T30] audit: type=1800 audit(4294967345.591:30): pid=17096 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.5205" name="features" dev="configfs" ino=42969 res=0 errno=0 [ 408.331511][T17140] QAT: Invalid ioctl 21531 [ 410.508353][T17208] sctp: Changing rto_alpha or rto_beta may lead to suboptimal rtt/srtt estimations! [ 416.384811][T17390] synth uevent: /devices/platform/dummy_hcd.3/usb4/ep_00: unknown uevent action string [ 416.447377][T17390] ep_00: uevent: failed to send synthetic uevent: -22 [ 419.858940][T17505] i2c i2c-0: new_device: Can't parse I2C address [ 420.841495][T17539] ICMPv6: process `syz.5.5421' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 421.084796][ T30] audit: type=1806 audit(4294967359.895:31): xattr=2EC7871B res=-22 [ 422.836839][T17600] usb usb15: usbfs: process 17600 (syz.4.5451) did not claim interface 0 before use [ 424.943361][T17663] Per memcg swappiness does not exist in cgroup v2. See memory.reclaim or memory.swap.max there [ 424.943361][T17663] [ 425.200380][T17675] kmem.limit_in_bytes is deprecated and will be removed. Writing any value to this file has no effect. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 425.641771][T17685] ICMPv6: process `syz.0.5491' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead [ 426.387463][T17706] ecryptfs_miscdev_write: Error while inspecting packet size [ 426.880690][T17723] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes [ 427.907130][T17756] scsi_dev_info_list_add_str: bad dev info string '' '' '' [ 429.856166][T17801] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 429.870097][T17801] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 429.939502][T17801] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 429.975891][T17801] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 430.039960][T17801] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 430.076394][T17801] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 430.173482][T17801] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 430.214182][T17801] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 430.259500][T17801] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 431.025664][T17881] usb usb24: check_ctrlrecip: process 17881 (syz.0.5565) requesting ep 01 but needs 81 [ 431.086490][T17881] usb usb24: usbfs: process 17881 (syz.0.5565) did not claim interface 0 before use [ 431.290170][ T5847] Bluetooth: hci0: command 0x0406 tx timeout [ 432.006704][ T5847] Bluetooth: hci3: command 0x0406 tx timeout [ 432.085837][ T5847] Bluetooth: hci2: command 0x0406 tx timeout [ 432.165199][ T5847] Bluetooth: hci1: command 0x0c1a tx timeout [ 433.366134][ T5847] Bluetooth: hci0: command 0x0406 tx timeout [ 433.784704][T17971] scsi_strcpy_devinfo: vendor string '/&c~n] | [ 433.784704][T17971] M' is too long [ 433.845552][T17971] scsi_strcpy_devinfo: model string 'Dd5 K2b [ 433.845552][T17971] W ' is too long [ 434.075592][ T5847] Bluetooth: hci3: command 0x0406 tx timeout [ 434.154387][T17981] [ 434.164501][ T5847] Bluetooth: hci2: command 0x0406 tx timeout [ 434.234726][ T5847] Bluetooth: hci1: command 0x0c1a tx timeout [ 434.692563][T18001] nvme_fabrics: unknown parameter or missing value '7' in ctrl creation request [ 435.098391][T18013] Process accounting resumed [ 435.301481][T18021] Format for deleting device is "id" (uint). [ 436.303647][ T5847] Bluetooth: hci1: command 0x0c1a tx timeout [ 440.976758][T18217] vmstat_refresh: nr_hugetlb -3072 [ 442.519538][T18269] cougar: G6 mapped to F18 [ 443.871908][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 443.885893][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 445.631810][T18385] rtc_cmos 00:00: Alarms can be up to one day in the future [ 445.644224][T18382] block nbd14: the capability attribute has been deprecated. [ 449.315135][T18520] [U] *&JiD [ 452.004469][T18622] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 453.905401][T18694] : Can't lookup blockdev [ 453.931795][T18695] block2mtd: device name too long [ 455.803066][ T30] audit: type=1807 audit(4294967394.795:32): UNKNOWN= res=0 [ 455.820211][T18758] ima: policy update failed [ 455.844683][ T30] audit: type=1802 audit(4294967394.805:33): pid=18759 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.1.5952" res=0 errno=0 [ 455.862239][ C0] vkms_vblank_simulate: vblank timer overrun [ 455.966575][ T30] audit: type=1802 audit(4294967394.866:34): pid=18758 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.5952" res=0 errno=0 [ 458.104761][T18843] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582) [ 459.688241][ T30] audit: type=1800 audit(4294967398.686:35): pid=18894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.6009" name="members" dev="configfs" ino=48098 res=0 errno=0 [ 459.708613][ C0] vkms_vblank_simulate: vblank timer overrun [ 461.311590][T18946] block2mtd: Using custom MTD label '' for dev [ 461.339479][T18946] block2mtd: error: cannot open device [ 462.459644][ T5847] Bluetooth: hci2: ACL packet for unknown connection handle 0 [ 463.453220][T19025] [U] [ 463.455971][T19025] [U] rPt5i}HmԺ9(e\O7MV*n bB+w [ 463.560255][ C0] vkms_vblank_simulate: vblank timer overrun [ 463.733071][T19025] [U] 7ϋ Bj$U-X&/?2`%w?ϺŰh\w [ 463.741104][T19025] [U] R!Cu+򳃇.S96b>Ö{ [ 463.847205][T19025] [U] oP=jW5^%W\c _H@~Ί|lO[%ao [ 463.872690][T19025] [U] kUdR_?.Y"?oQqD;`N0QB۲* `@;^'g}5r>LJ+@<ÿcAU`A}}Hi%?`zga/:}?4>A.U>ʭX qn\2q2}ƼcJFQ9mFdÕŲG8y̵eFfq4\Z5<.+7&W^axԅRmw\2LvJe.6 [ 464.309960][T19025] [U] =\2n|OFϊ`zi(k5eĢHW7g"/Mu)*/˓%jRUTmIJ7M5JH [ 464.370284][T19025] [U] QU~A%z [ 464.374243][T19025] [U] o{\UcK!>o{n(x/ [ 464.402482][T19052] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 464.435145][T19025] [U] PDٛ9&a4 ầ*0.`R~m~(C+y7&O/-RR2 [ 464.462529][T19025] [U] oj3KQu)n·Eb=]$B$6;e [ 464.510002][T19025] [U] P/΂?R~T"Ds6f"~a$wBN< 8|{\yg.LĘ«sX [ 464.567486][T19025] [U] vVt۳z?|M2 [ 464.572765][T19025] [U] Z{:n#c98Jk}G=\fd]*Iїj0[?b2BiET=6` BJcF0#6 rWE([LFᦺ qdI{ qbM{dx*3:ЛU4=`K0I [ 465.142522][T19076] Process accounting paused [ 467.621048][T19174] synth uevent: /bus/memstick: unknown uevent action string [ 470.179726][T19269] writes to the poll attribute are ignored. [ 470.217666][T19269] please use driver specific parameters instead. [ 471.012396][T19302] ima: policy update failed [ 471.054939][ T30] audit: type=1802 audit(4294967410.125:36): pid=19302 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.6172" res=0 errno=0 [ 472.740805][T19361] cifs: Unknown parameter '#ʑC ˀH/R{<' [ 474.069735][T19413] ptrace attach of "./syz-executor exec"[5856] was attempted by "./syz-executor exec"[19413] [ 474.944626][T19443] Scaler: ================= START STATUS ================= [ 474.952031][T19443] Scaler: ================== END STATUS ================== [ 477.373432][T19532] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 477.468653][T19532] CIFS mount error: No usable UNC path provided in device string! [ 477.468653][T19532] [ 477.501609][T19532] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 478.433738][T19569] CIFS mount error: No usable UNC path provided in device string! [ 478.433738][T19569] [ 478.474739][T19569] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 480.402247][T19644] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 482.898111][T19734] aoe: copy from user failed [ 482.933913][T19734] aoe: could not set interface list: too many interfaces [ 485.832928][ T5847] Bluetooth: hci1: unexpected subevent 0x04 length: 122 > 11 [ 493.827530][T20161] nvme_fabrics: missing parameter 'transport=%s' [ 493.853281][T20161] nvme_fabrics: missing parameter 'nqn=%s' [ 495.191340][T20213] Process accounting resumed [ 504.473330][T20550] bond0: option packets_per_slave: invalid value ( Xnp) [ 504.512956][T20550] bond0: option packets_per_slave: allowed values 0 - 65535 [ 504.992961][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 505.001674][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 514.089236][T20890] ima: policy update failed [ 514.126139][ T30] audit: type=1802 audit(4294967453.419:37): pid=20890 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.6789" res=0 errno=0 [ 515.016607][T20923] usbcore.quirks: string doesn't fit in 127 chars. [ 515.634247][T20941] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31 [ 519.021888][T21066] afs: Bad value for 'source' [ 520.549540][T21118] ICMPv6: process `syz.1.6874' is using deprecated sysctl (syscall) net.ipv6.neigh.macsec0.base_reachable_time - use net.ipv6.neigh.macsec0.base_reachable_time_ms instead [ 521.272121][T21136] [ 522.880714][T21180] kAFS: Invalid Command on /proc/fs/afs/cells file [ 524.668865][T21253] i2c i2c-0: new_device: Invalid device name [ 525.124396][T21262] Process accounting paused [ 525.453114][T21281] deleting an unspecified loop device is not supported. [ 528.624471][T21387] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4::, load rds_tcp or rds_rdma? [ 528.750210][T21338] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 530.795008][T21462] kAFS: Invalid Command on /proc/fs/afs/cells file [ 531.105895][T21474] bcache: register_bcache() error : failed to open device [ 531.855384][T21506] ceph: Failed to parse sending metrics switch value 'P^' [ 534.307273][T21595] busy [ 535.420831][T21637] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 535.742782][T21650] program syz.5.7085 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 536.386794][T21671] zram: Added device: zram1 [ 536.460334][T21677] Unable to find swap-space signature [ 541.361076][T21862] ptrace attach of "./syz-executor exec"[14248] was attempted by ""[21862] [ 541.641497][T21872] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(5) [ 542.139189][T21892] bond0: option lp_interval: invalid value (/sys/devices/platform/vkms/graphics/fb0/rotate) [ 542.196045][T21892] bond0: option lp_interval: allowed values 1 - 2147483647 [ 543.656278][T21950] nvme_fcloop: unknown parameter or missing value '7' [ 545.189923][ T30] audit: type=1800 audit(4294967484.640:38): pid=22009 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.7227" name="lu_gp_id" dev="configfs" ino=55982 res=0 errno=0 [ 545.273271][T22011] ICMPv6: process `syz.5.7228' is using deprecated sysctl (syscall) net.ipv6.neigh.veth0_to_bridge.base_reachable_time - use net.ipv6.neigh.veth0_to_bridge.base_reachable_time_ms instead [ 549.015598][T22149] netlink: 'syz.4.7287': attribute type 1 has an invalid length. [ 549.797883][T22180] Zero length message leads to an empty skb [ 550.245784][T22193] nbd: couldn't find device at index 33904 [ 550.279509][T22192] netlink: 'syz.5.7304': attribute type 1 has an invalid length. [ 551.264239][T22225] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 551.318663][T22225] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 553.629766][T22247] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 553.927255][T22321] openvswitch: netlink: Message has 4 unknown bytes. [ 554.099700][T22326] openvswitch: netlink: Geneve opt len 1 is not a multiple of 4. [ 554.155942][T22327] usb usb34: usbfs: process 22327 (syz.4.7348) did not claim interface 0 before use [ 554.818784][T22346] nbd: must specify an index to disconnect [ 555.510499][T22355] Process accounting resumed [ 555.526017][T22370] netlink: 'syz.5.7365': attribute type 11 has an invalid length. [ 555.558949][T22370] netlink: 'syz.5.7365': attribute type 11 has an invalid length. [ 555.615744][T22370] netlink: 'syz.5.7365': attribute type 11 has an invalid length. [ 557.009759][T22426] delete_channel: no stack [ 557.455330][T22440] netlink: 'syz.5.7391': attribute type 11 has an invalid length. [ 558.844105][T22484] netlink: 'syz.0.7406': attribute type 1 has an invalid length. [ 558.907877][T22487] openvswitch: netlink: Flow key attribute not present in set flow. [ 560.721941][T22545] dyndbg: expected <4096 bytes into control [ 561.574620][ T30] audit: type=1326 audit(4294967501.115:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22565 comm="syz.4.7439" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcf4c58e169 code=0x0 [ 565.570298][ T30] audit: type=1326 audit(4294967505.126:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22661 comm="syz.0.7473" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbdefb8e169 code=0x0 [ 565.755096][T22667] HfR: entered promiscuous mode [ 566.120350][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 566.126736][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 568.281087][ T30] audit: type=1800 audit(4294967507.860:41): pid=22719 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.7496" name="lu_gp_id" dev="configfs" ino=57977 res=0 errno=0 [ 570.819034][T22783] netlink: 260 bytes leftover after parsing attributes in process `syz.5.7521'. [ 575.268721][T22915] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 575.509598][T22923] netlink: 306 bytes leftover after parsing attributes in process `syz.0.7575'. [ 577.162816][T22974] openvswitch: netlink: IP tunnel dst address not specified [ 577.468626][T22982] sctp: [Deprecated]: syz.4.7600 (pid 22982) Use of int in max_burst socket option deprecated. [ 577.468626][T22982] Use struct sctp_assoc_value instead [ 580.640303][T23087] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 580.680696][T23087] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 582.259535][T23132] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 584.234870][T23203] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 585.511173][T23242] Process accounting paused [ 590.832290][T23446] netlink: 342 bytes leftover after parsing attributes in process `syz.0.7775'. [ 593.193077][T23523] netlink: 'syz.1.7806': attribute type 8 has an invalid length. [ 593.905507][T23547] : entered promiscuous mode [ 597.045194][T23660] capability: warning: `syz.4.7858' uses 32-bit capabilities (legacy support in use) [ 598.973704][T23744] ucma_write: process 4133 (syz.1.7881) changed security contexts after opening file descriptor, this is not allowed. [ 600.542105][T23794] program syz.4.7900 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 601.333433][T23820] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input33 [ 601.756188][T23853] netlink: zone id is out of range [ 601.777190][T23853] netlink: zone id is out of range [ 601.782329][T23853] netlink: zone id is out of range [ 601.859146][T23853] netlink: zone id is out of range [ 602.012133][T23853] netlink: set zone limit has 8 unknown bytes [ 603.090463][T23899] netlink: 'syz.1.7934': attribute type 10 has an invalid length. [ 604.432987][T23946] netlink: zone id is out of range [ 604.438123][T23946] netlink: zone id is out of range [ 604.491180][T23946] netlink: zone id is out of range [ 604.498348][T23946] netlink: zone id is out of range [ 604.666939][T23946] netlink: set zone limit has 8 unknown bytes [ 606.827354][T24049] Format for linking two devices is "netnsfd_a:ifidx_a netnsfd_b:ifidx_b" (int uint int uint). [ 607.260407][T24059] HSR: entered promiscuous mode [ 607.417516][T24066] MTRR 1 not used [ 608.415639][T24114] nbd: must specify a size in bytes for the device [ 609.179080][T24138] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input34 [ 609.455852][T24146] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input35 [ 612.220023][T24285] tc_dump_action: action bad kind [ 613.296204][T24312] svc: failed to register nfsdv3 RPC service (errno 111). [ 613.346240][T24312] svc: failed to register nfsaclv3 RPC service (errno 111). [ 614.170350][T24339] Format for linking two devices is "netnsfd_a:ifidx_a netnsfd_b:ifidx_b" (int uint int uint). [ 615.483792][T24375] Process accounting resumed [ 616.195209][T24410] netlink: 'syz.0.8094': attribute type 2 has an invalid length. [ 616.578387][T24423] .SR: entered promiscuous mode [ 617.743641][T24483] netlink: 'syz.5.8114': attribute type 2 has an invalid length. [ 617.972188][T24487] openvswitch: netlink: ERSPAN option length err (len 256, max 255). [ 618.084435][T24493] netlink: 'syz.4.8119': attribute type 2 has an invalid length. [ 618.787489][T24536] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8128'. [ 619.536463][ T5847] Bluetooth: hci2: ACL packet too small [ 620.903787][T24610] openvswitch: netlink: IP tunnel dst address not specified [ 621.120843][T24613] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 621.505784][T24625] svc: failed to register nfsdv3 RPC service (errno 111). [ 621.557402][T24625] svc: failed to register nfsaclv3 RPC service (errno 111). [ 622.266724][T24654] sg_read: process 4287 (syz.1.8172) changed security contexts after opening file descriptor, this is not allowed. [ 623.587755][ T5847] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 623.713622][T24699] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE r҄y*"l-y– [ 626.543482][T24780] svc: failed to register nfsdv3 RPC service (errno 111). [ 626.581615][T24780] svc: failed to register nfsaclv3 RPC service (errno 111). [ 626.603842][T24790] openvswitch: netlink: Missing valid actions attribute. [ 627.242974][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 627.249301][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 628.256103][T24844] netlink: 'syz.4.8237': attribute type 11 has an invalid length. [ 628.296758][T24844] netlink: 'syz.4.8237': attribute type 11 has an invalid length. [ 628.343537][T24844] netlink: 'syz.4.8237': attribute type 11 has an invalid length. [ 628.385520][T24844] netlink: 'syz.4.8237': attribute type 11 has an invalid length. [ 628.440608][T24844] netlink: 'syz.4.8237': attribute type 11 has an invalid length. [ 629.093709][T24868] svc: failed to register nfsdv3 RPC service (errno 111). [ 629.127060][T24868] svc: failed to register nfsaclv3 RPC service (errno 111). [ 629.658588][T24895] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE r҄y*"l-y–L̓]' [ 629.729402][T24895] CPU: 0 UID: 0 PID: 24895 Comm: syz.4.8252 Tainted: G U 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) [ 629.729448][T24895] Tainted: [U]=USER [ 629.729455][T24895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 629.729473][T24895] Call Trace: [ 629.729480][T24895] [ 629.729492][T24895] dump_stack_lvl+0x16c/0x1f0 [ 629.729528][T24895] sysfs_warn_dup+0x7f/0xa0 [ 629.729550][T24895] sysfs_do_create_link_sd+0x124/0x140 [ 629.729574][T24895] sysfs_create_link+0x61/0xc0 [ 629.729596][T24895] device_add+0x62c/0x1a70 [ 629.729624][T24895] ? __pfx_device_add+0x10/0x10 [ 629.729647][T24895] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 629.729682][T24895] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 629.729722][T24895] wiphy_register+0x1c9c/0x2850 [ 629.729745][T24895] ? netdev_run_todo+0x864/0x1320 [ 629.729778][T24895] ? __dev_printk+0x1d0/0x270 [ 629.729815][T24895] ? __pfx_wiphy_register+0x10/0x10 [ 629.729853][T24895] ieee80211_register_hw+0x2432/0x4020 [ 629.729888][T24895] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 629.729914][T24895] ? find_held_lock+0x2b/0x80 [ 629.729938][T24895] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 629.729972][T24895] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 629.730007][T24895] ? __hrtimer_setup+0x176/0x280 [ 629.730044][T24895] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 629.730091][T24895] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 629.730129][T24895] hwsim_new_radio_nl+0xb51/0x12c0 [ 629.730161][T24895] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 629.730198][T24895] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 629.730249][T24895] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 629.730295][T24895] genl_family_rcv_msg_doit+0x206/0x2f0 [ 629.730355][T24895] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 629.730394][T24895] ? trace_cap_capable+0x18d/0x200 [ 629.730434][T24895] ? bpf_lsm_capable+0x9/0x10 [ 629.730460][T24895] ? security_capable+0x7e/0x260 [ 629.730485][T24895] ? ns_capable+0xd7/0x110 [ 629.730514][T24895] genl_rcv_msg+0x55c/0x800 [ 629.730556][T24895] ? __pfx_genl_rcv_msg+0x10/0x10 [ 629.730586][T24895] ? __pfx___dev_queue_xmit+0x10/0x10 [ 629.730616][T24895] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 629.730649][T24895] ? __lock_acquire+0xaa4/0x1ba0 [ 629.730687][T24895] netlink_rcv_skb+0x16a/0x440 [ 629.730724][T24895] ? __pfx_genl_rcv_msg+0x10/0x10 [ 629.730751][T24895] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 629.730801][T24895] ? __pfx_down_read+0x10/0x10 [ 629.730823][T24895] ? netlink_deliver_tap+0x1ae/0xd30 [ 629.730860][T24895] genl_rcv+0x28/0x40 [ 629.730896][T24895] netlink_unicast+0x53a/0x7f0 [ 629.730934][T24895] ? __pfx_netlink_unicast+0x10/0x10 [ 629.730966][T24895] ? __lock_acquire+0xaa4/0x1ba0 [ 629.731006][T24895] netlink_sendmsg+0x8d1/0xdd0 [ 629.731045][T24895] ? __pfx_netlink_sendmsg+0x10/0x10 [ 629.731091][T24895] ____sys_sendmsg+0xa95/0xc70 [ 629.731115][T24895] ? copy_msghdr_from_user+0x10a/0x160 [ 629.731145][T24895] ? __pfx_____sys_sendmsg+0x10/0x10 [ 629.731182][T24895] ___sys_sendmsg+0x134/0x1d0 [ 629.731215][T24895] ? __pfx____sys_sendmsg+0x10/0x10 [ 629.731285][T24895] __sys_sendmsg+0x16d/0x220 [ 629.731316][T24895] ? __pfx___sys_sendmsg+0x10/0x10 [ 629.731346][T24895] ? __x64_sys_futex+0x1e0/0x4c0 [ 629.731382][T24895] ? rcu_is_watching+0x12/0xc0 [ 629.731414][T24895] do_syscall_64+0xcd/0x230 [ 629.731459][T24895] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 629.731482][T24895] RIP: 0033:0x7fcf4c58e169 [ 629.731501][T24895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 629.731524][T24895] RSP: 002b:00007fcf4d3b8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 629.731545][T24895] RAX: ffffffffffffffda RBX: 00007fcf4c7b5fa0 RCX: 00007fcf4c58e169 [ 629.731560][T24895] RDX: 0000000004000800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 629.731574][T24895] RBP: 00007fcf4c610a68 R08: 0000000000000000 R09: 0000000000000000 [ 629.731588][T24895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 629.731602][T24895] R13: 0000000000000000 R14: 00007fcf4c7b5fa0 R15: 00007ffc415e88e8 [ 629.731631][T24895] [ 632.090820][T24936] ima: policy update failed [ 632.106461][ T30] audit: type=1802 audit(4294967349.551:42): pid=24936 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.8268" res=0 errno=0 [ 632.749764][T24954] perf: Dynamic interrupt throttling disabled, can hang your system! [ 633.385344][T24973] netlink: 'syz.1.8281': attribute type 11 has an invalid length. [ 633.450428][T24973] netlink: 'syz.1.8281': attribute type 11 has an invalid length. [ 633.524769][T24973] netlink: 'syz.1.8281': attribute type 11 has an invalid length. [ 633.556109][T24973] netlink: 'syz.1.8281': attribute type 11 has an invalid length. [ 633.602947][T24973] netlink: 'syz.1.8281': attribute type 11 has an invalid length. [ 635.450091][T25034] svc: failed to register nfsdv3 RPC service (errno 111). [ 635.519923][T25034] svc: failed to register nfsaclv3 RPC service (errno 111). [ 636.422397][T25075] openvswitch: netlink: Key type 29 is not supported [ 636.828316][T25085] svc: failed to register nfsdv3 RPC service (errno 111). [ 636.854891][T25085] svc: failed to register nfsaclv3 RPC service (errno 111). [ 637.534147][T25112] usb usb36: usbfs: process 25112 (syz.1.8330) did not claim interface 0 before use [ 639.685999][T25170] __vm_enough_memory: pid: 25170, comm: syz.5.8352, bytes: 4503599627366400 not enough memory for the allocation [ 641.357163][T25226] openvswitch: netlink: Key type 261 is out of range max 32 [ 642.619133][T25266] netlink: zone id is out of range [ 645.189177][T25341] could not allocate digest TFM handle [ 645.241379][T25344] could not allocate digest TFM handle [ 645.562795][T25361] Process accounting paused [ 645.767846][T25373] netlink: 16 bytes leftover after parsing attributes in process `syz.0.8430'. [ 649.842983][T25517] netlink: 'syz.4.8489': attribute type 1 has an invalid length. [ 650.099065][T25528] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8492'. [ 651.159401][T25558] netlink: zone id is out of range [ 651.182918][T25558] netlink: zone id is out of range [ 651.200336][T25558] netlink: zone id is out of range [ 651.220946][T25558] netlink: zone id is out of range [ 651.242696][T25558] netlink: zone id is out of range [ 651.261588][T25558] netlink: zone id is out of range [ 651.282375][T25558] netlink: zone id is out of range [ 651.301747][T25558] netlink: zone id is out of range [ 651.321580][T25558] netlink: zone id is out of range [ 651.342378][T25558] netlink: zone id is out of range [ 651.601663][T25573] vivid-003: ================= START STATUS ================= [ 651.645844][T25573] vivid-003: Radio HW Seek Mode: Bounded [ 651.651516][T25573] vivid-003: Radio Programmable HW Seek: false [ 651.712701][T25573] vivid-003: RDS Rx I/O Mode: Block I/O [ 651.747344][T25573] vivid-003: Generate RBDS Instead of RDS: false [ 651.778244][T25573] vivid-003: RDS Reception: true [ 651.808068][T25573] vivid-003: RDS Program Type: 0 inactive [ 651.832701][T25573] vivid-003: RDS PS Name: inactive [ 651.866320][T25573] vivid-003: RDS Radio Text: inactive [ 651.890069][T25573] vivid-003: RDS Traffic Announcement: false inactive [ 651.935157][T25573] vivid-003: RDS Traffic Program: false inactive [ 651.959015][T25573] vivid-003: RDS Music: false inactive [ 651.995453][T25573] vivid-003: ================== END STATUS ================== [ 652.926873][T25622] netlink: 'syz.5.8533': attribute type 2 has an invalid length. [ 655.784042][T25722] netlink: 'syz.5.8573': attribute type 1 has an invalid length. [ 656.384032][ T3476] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 656.516780][ T3476] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 656.631253][ T3476] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 657.065565][ T3476] bridge_slave_1: left allmulticast mode [ 657.105478][ T3476] bridge_slave_1: left promiscuous mode [ 657.112312][ T3476] bridge0: port 2(bridge_slave_1) entered disabled state [ 657.223709][ T3476] bridge_slave_0: left allmulticast mode [ 657.253630][ T3476] bridge_slave_0: left promiscuous mode [ 657.285740][ T3476] bridge0: port 1(bridge_slave_0) entered disabled state [ 658.024391][ T5852] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 658.037498][ T5852] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 658.045927][ T5852] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 658.063833][ T5852] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 658.071868][ T5852] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 658.504093][ T3476] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 658.532389][ T3476] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 658.544629][ T3476] bond0 (unregistering): Released all slaves [ 660.100401][ T5852] Bluetooth: hci3: command tx timeout [ 660.306159][T25780] chnl_net:caif_netlink_parms(): no params data found [ 660.507461][ T3476] hsr_slave_0: left promiscuous mode [ 660.547328][ T3476] hsr_slave_1: left promiscuous mode [ 660.589559][ T3476] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 660.620620][ T3476] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 660.697297][ T3476] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 660.705900][ T3476] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 660.857864][ T3476] veth1_macvtap: left promiscuous mode [ 660.863396][ T3476] veth0_macvtap: left promiscuous mode [ 660.913957][ T3476] veth1_vlan: left promiscuous mode [ 660.932594][ T3476] veth0_vlan: left promiscuous mode [ 661.157991][ T30] audit: type=1107 audit(4294967378.752:43): pid=25979 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 661.235708][ T30] audit: type=1107 audit(4294967378.783:44): pid=25979 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 662.169254][ T5852] Bluetooth: hci3: command tx timeout [ 662.363371][ T3476] team0 (unregistering): Port device team_slave_1 removed [ 662.522865][ T3476] team0 (unregistering): Port device team_slave_0 removed [ 664.240687][ T5852] Bluetooth: hci3: command tx timeout [ 664.408367][T25780] bridge0: port 1(bridge_slave_0) entered blocking state [ 664.441175][T25780] bridge0: port 1(bridge_slave_0) entered disabled state [ 664.491188][T25780] bridge_slave_0: entered allmulticast mode [ 664.521727][T25780] bridge_slave_0: entered promiscuous mode [ 664.577286][T25780] bridge0: port 2(bridge_slave_1) entered blocking state [ 664.584390][T25780] bridge0: port 2(bridge_slave_1) entered disabled state [ 664.676446][T25780] bridge_slave_1: entered allmulticast mode [ 664.684154][T25780] bridge_slave_1: entered promiscuous mode [ 664.787649][T26092] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 664.926909][T25780] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 665.089984][T25780] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 665.360033][T25780] team0: Port device team_slave_0 added [ 665.416406][T25780] team0: Port device team_slave_1 added [ 665.424076][T26157] nbd: illegal input index 2147483647 [ 665.653072][T25780] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 665.660033][T25780] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 665.852997][T25780] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 665.937398][T25780] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 665.983890][T25780] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 666.151103][T25780] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 666.312605][ T5852] Bluetooth: hci3: command tx timeout [ 666.435905][T26220] ksmbd: Unknown IPC event: 14, ignore. [ 666.492361][T25780] hsr_slave_0: entered promiscuous mode [ 666.521077][T25780] hsr_slave_1: entered promiscuous mode [ 666.557637][T25780] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 666.565210][T25780] Cannot create hsr debugfs directory [ 666.667394][T26244] program syz.5.8652 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 666.857137][T26262] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8654'. [ 668.519690][T26387] netlink: 'syz.4.8670': attribute type 1 has an invalid length. [ 668.809809][T26406] CIFS mount error: No usable UNC path provided in device string! [ 668.809809][T26406] [ 668.868248][T25780] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 668.883249][T26406] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 668.932833][T25780] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 668.965705][T26411] device-mapper: ioctl: Invalid data size in the ioctl structure: 0 [ 668.988356][T25780] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 669.044580][T25780] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 669.417181][T26421] netlink: 'syz.4.8680': attribute type 1 has an invalid length. [ 669.448693][T25780] 8021q: adding VLAN 0 to HW filter on device bond0 [ 669.544784][T25780] 8021q: adding VLAN 0 to HW filter on device team0 [ 669.635231][ T5112] bridge0: port 1(bridge_slave_0) entered blocking state [ 669.642368][ T5112] bridge0: port 1(bridge_slave_0) entered forwarding state [ 669.725464][ T5112] bridge0: port 2(bridge_slave_1) entered blocking state [ 669.732633][ T5112] bridge0: port 2(bridge_slave_1) entered forwarding state [ 670.682179][T25780] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 670.890701][T25780] veth0_vlan: entered promiscuous mode [ 670.957462][T25780] veth1_vlan: entered promiscuous mode [ 671.154092][T25780] veth0_macvtap: entered promiscuous mode [ 671.223750][T25780] veth1_macvtap: entered promiscuous mode [ 671.306461][T25780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 671.392421][T25780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 671.423493][T26478] Invalid ELF header magic: != ELF [ 671.460682][T25780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 671.521614][T25780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 671.571998][T25780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 671.645054][T25780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 671.712577][T25780] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 671.807572][T25780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 671.872316][T25780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 671.956535][T25780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 672.009911][T25780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 672.063209][T25780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 672.106274][T25780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 672.175617][T25780] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 672.273499][T25780] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 672.350195][T25780] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 672.405717][T25780] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 672.414450][T25780] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 672.884007][ T139] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 672.962623][ T139] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 673.126761][T25892] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 673.212364][T25892] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 675.536305][T26599] Process accounting resumed [ 676.326413][T26625] netlink: 342 bytes leftover after parsing attributes in process `syz.4.8741'. [ 676.373785][T26626] netlink: 'syz.0.8742': attribute type 1 has an invalid length. [ 676.720718][T26637] net_ratelimit: 21 callbacks suppressed [ 676.720735][T26637] openvswitch: netlink: IP tunnel dst address not specified [ 680.045940][T26748] netlink: del zone limit has 8 unknown bytes [ 680.337983][T26762] netlink: set zone limit has 8 unknown bytes [ 683.612961][T26879] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 683.612961][T26879] The task syz.4.8834 (26879) triggered the difference, watch for misbehavior. [ 686.299468][T26958] perf: Dynamic interrupt throttling disabled, can hang your system! [ 686.321134][T26960] openvswitch: netlink: IP tunnel dst address not specified [ 687.221688][T26995] netlink: 'syz.5.8886': attribute type 2 has an invalid length. [ 687.684181][T27014] netlink: 'syz.4.8893': attribute type 1 has an invalid length. [ 687.711120][T27013] nbd: illegal input index -65536 [ 688.366998][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 688.375798][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 688.621362][T27045] program syz.4.8906 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 689.454465][T27069] openvswitch: netlink: IP tunnel dst address not specified [ 690.204267][T27094] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 690.794990][T27116] crash hp: kexec_trylock() failed, kdump image may be inaccurate [ 690.815860][T27117] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xeffffd12 [ 691.322841][T27128] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8940'. [ 692.239670][T27111] kexec: Could not allocate control_code_buffer [ 693.884883][T27223] ptrace attach of "./syz-executor exec"[25780] was attempted by "./syz-executor exec"[27223] [ 694.935428][T27257] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8990'. [ 695.706303][T27282] netlink: 'syz.5.9001': attribute type 1 has an invalid length. [ 696.413830][T27304] smc: net device syz_tun applied user defined pnetid ETHTOOL [ 696.555934][T27308] svc: failed to register nfsdv3 RPC service (errno 111). [ 696.623819][T27308] svc: failed to register nfsaclv3 RPC service (errno 111). [ 696.911166][T27322] openvswitch: netlink: Message has 20 unknown bytes. [ 696.998147][T27316] sd 0:0:1:0: PR command failed: 1026 [ 697.029029][T27316] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 697.056506][T27316] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 698.281391][T27371] netlink: 4 bytes leftover after parsing attributes in process `syz.5.9031'. [ 698.305027][T27373] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9033'. [ 698.903637][T27396] ima: policy update failed [ 698.947534][ T30] audit: type=1802 audit(4294967416.739:45): pid=27396 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.9043" res=0 errno=0 [ 699.092340][T27403] crash hp: kexec_trylock() failed, kdump image may be inaccurate [ 699.331842][T27411] nbd: couldn't find a device at index 0 [ 700.200835][T27435] netlink: zone id is out of range [ 700.245711][T27435] netlink: zone id is out of range [ 700.265088][T27435] netlink: zone id is out of range [ 700.295283][T27435] netlink: zone id is out of range [ 700.312149][T27435] netlink: zone id is out of range [ 700.332475][T27438] netlink: 80 bytes leftover after parsing attributes in process `syz.0.9060'. [ 700.355637][T27435] netlink: zone id is out of range [ 700.372923][T27435] netlink: zone id is out of range [ 700.402181][T27435] netlink: zone id is out of range [ 700.427144][T27435] netlink: zone id is out of range [ 700.542866][T27399] kexec: Could not allocate control_code_buffer [ 702.246395][ T30] audit: type=1804 audit(4294967420.046:46): pid=27490 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.9080" name="/newroot/1771/file0" dev="tmpfs" ino=8922 res=1 errno=0 [ 702.411039][ T30] audit: type=1800 audit(4294967420.086:47): pid=27490 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.9080" name="file0" dev="tmpfs" ino=8922 res=0 errno=0 [ 702.763856][T27504] netlink: 80 bytes leftover after parsing attributes in process `syz.1.9086'. [ 704.870527][T27558] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 5 [ 705.319162][T27569] netlink: 7 bytes leftover after parsing attributes in process `syz.4.9111'. [ 705.459935][T27569] Process accounting paused [ 705.498327][T27576] dyndbg: bad flag-op , at start of [ 705.533142][T27576] dyndbg: flags parse failed [ 708.432241][T27661] netlink: 4 bytes leftover after parsing attributes in process `syz.5.9146'. [ 708.546413][T27664] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9148'. [ 708.660649][T27669] net_ratelimit: 20 callbacks suppressed [ 708.660664][T27669] openvswitch: netlink: nsh attribute has 2 unknown bytes. [ 711.365953][T27760] cifs: Unknown parameter '' [ 711.798941][T27774] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9193'. [ 711.908923][T27778] netlink: 29 bytes leftover after parsing attributes in process `syz.4.9195'. [ 712.651792][T27803] netlink: 16 bytes leftover after parsing attributes in process `syz.4.9206'. [ 712.680193][T27803] tc_dump_action: action bad kind [ 714.771061][T27866] netlink: 'syz.1.9230': attribute type 22 has an invalid length. [ 716.330005][T27913] openvswitch: netlink: Duplicate or invalid key (type 0). [ 717.826037][T27972] netlink: Conntrack attr has 16 unknown bytes [ 718.102055][T27979] sctp: [Deprecated]: syz.0.9278 (pid 27979) Use of int in maxseg socket option. [ 718.102055][T27979] Use struct sctp_assoc_value instead [ 722.889264][T28139] openvswitch: netlink: VXLAN extension message has 4 unknown bytes. [ 723.104943][T28145] netlink: 'syz.0.9342': attribute type 1 has an invalid length. [ 724.092464][T28179] openvswitch: netlink: Message has 1 unknown bytes. [ 725.669923][T28232] CIFS: VFS: Invalid SecurityFlags: [ 725.914852][T28242] nbd: must specify at least one socket [ 726.377004][T28253] device-mapper: ioctl: name not supplied when creating device [ 726.544956][T28259] netlink: 'syz.5.9383': attribute type 2 has an invalid length. [ 726.951521][T28276] openvswitch: netlink: VXLAN extension 0 has unexpected len 4 expected 0 [ 727.603305][T28293] openvswitch: netlink: IP tunnel attribute has 5 unknown bytes. [ 730.834557][T28405] device-mapper: ioctl: name not supplied when creating device [ 731.325098][T28421] openvswitch: netlink: VXLAN extension 0 has unexpected len 4 expected 0 [ 731.731311][T28432] openvswitch: netlink: IP tunnel attribute has 5 unknown bytes. [ 731.834126][T28435] netlink: 'syz.0.9455': attribute type 2 has an invalid length. [ 733.391512][T28484] openvswitch: netlink: Duplicate key (type 15). [ 733.698980][T28488] sd 0:0:1:0: PR command failed: 1026 [ 733.704398][T28488] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 733.744828][T28488] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 735.190919][T28533] sd 0:0:1:0: PR command failed: 1026 [ 735.227314][T28533] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 735.262717][T28533] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 735.416708][T28541] Process accounting resumed [ 737.799629][ T30] audit: type=1804 audit(4294967455.791:48): pid=28621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.9524" name="/newroot/1285/file0" dev="tmpfs" ino=6479 res=1 errno=0 [ 737.820993][ C0] vkms_vblank_simulate: vblank timer overrun [ 737.963493][ T30] audit: type=1800 audit(4294967455.791:49): pid=28621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.9524" name="file0" dev="tmpfs" ino=6479 res=0 errno=0 [ 737.984098][ C0] vkms_vblank_simulate: vblank timer overrun [ 738.585254][T28640] dyndbg: bad flag-op , at start of [ 738.611565][T28640] dyndbg: flags parse failed [ 742.008459][T28730] netlink: 7 bytes leftover after parsing attributes in process `syz.5.9567'. [ 742.353322][T28741] netlink: 'syz.5.9573': attribute type 1 has an invalid length. [ 743.329366][T28766] netlink: 4 bytes leftover after parsing attributes in process `syz.5.9582'. [ 745.316121][T28821] cifs: Unknown parameter '' [ 745.733875][T28832] CIFS: VFS: Invalid SecurityFlags: [ 746.859010][T28855] netlink: 'syz.0.9614': attribute type 2 has an invalid length. [ 747.740787][T28874] netlink: 29 bytes leftover after parsing attributes in process `syz.5.9624'. [ 749.483048][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 749.496526][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 749.646854][T28927] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 749.654107][T28927] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 750.883671][T28963] netlink: 'syz.5.9662': attribute type 22 has an invalid length. [ 752.202480][ T3476] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 752.409319][ T3476] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 752.617848][ T3476] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 752.893539][T29006] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 752.948984][T29006] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 752.968291][ T3476] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 753.418713][ T3476] bridge_slave_1: left allmulticast mode [ 753.465989][ T3476] bridge_slave_1: left promiscuous mode [ 753.472140][ T3476] bridge0: port 2(bridge_slave_1) entered disabled state [ 753.705427][ T3476] bridge_slave_0: left allmulticast mode [ 753.723090][T24697] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 753.741341][T24697] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 753.749079][T24697] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 753.759103][T24697] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 753.767302][T24697] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 753.803003][ T3476] bridge_slave_0: left promiscuous mode [ 753.827438][ T3476] bridge0: port 1(bridge_slave_0) entered disabled state [ 754.177163][T29048] openvswitch: netlink: Duplicate key (type 15). [ 754.930535][ T3476] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 754.961801][ T3476] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 754.989234][ T3476] bond0 (unregistering): Released all slaves [ 755.842147][T24697] Bluetooth: hci3: command tx timeout [ 756.641907][T29032] chnl_net:caif_netlink_parms(): no params data found [ 757.286195][ T3476] hsr_slave_0: left promiscuous mode [ 757.306687][ T3476] hsr_slave_1: left promiscuous mode [ 757.312535][ T3476] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 757.358323][ T3476] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 757.408692][ T3476] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 757.435450][ T3476] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 757.544037][ T3476] veth1_macvtap: left promiscuous mode [ 757.549946][ T3476] veth0_macvtap: left promiscuous mode [ 757.607693][ T3476] veth1_vlan: left promiscuous mode [ 757.624399][ T3476] veth0_vlan: left promiscuous mode [ 757.915416][ T5852] Bluetooth: hci3: command tx timeout [ 758.634408][ T3476] team0 (unregistering): Port device team_slave_1 removed [ 758.669521][ T3476] team0 (unregistering): Port device team_slave_0 removed [ 759.124144][T29032] bridge0: port 1(bridge_slave_0) entered blocking state [ 759.156940][T29032] bridge0: port 1(bridge_slave_0) entered disabled state [ 759.164164][T29032] bridge_slave_0: entered allmulticast mode [ 759.196614][T29032] bridge_slave_0: entered promiscuous mode [ 759.225000][T29032] bridge0: port 2(bridge_slave_1) entered blocking state [ 759.232121][T29032] bridge0: port 2(bridge_slave_1) entered disabled state [ 759.275206][T29032] bridge_slave_1: entered allmulticast mode [ 759.286887][T29032] bridge_slave_1: entered promiscuous mode [ 759.419585][T29032] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 759.469493][T29032] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 759.598450][T29032] team0: Port device team_slave_0 added [ 759.635711][T29032] team0: Port device team_slave_1 added [ 759.726441][T29032] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 759.744585][T29032] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 759.804897][T29032] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 759.832641][T29032] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 759.839580][T29032] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 759.900741][T29032] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 759.980953][ T5852] Bluetooth: hci3: command tx timeout [ 760.059112][T29032] hsr_slave_0: entered promiscuous mode [ 760.073709][T29032] hsr_slave_1: entered promiscuous mode [ 760.080248][T29032] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 760.087812][T29032] Cannot create hsr debugfs directory [ 761.077818][T29032] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 761.102174][T29032] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 761.129146][T29032] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 761.177920][T29032] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 761.367148][T29032] 8021q: adding VLAN 0 to HW filter on device bond0 [ 761.412545][T29032] 8021q: adding VLAN 0 to HW filter on device team0 [ 761.465840][ T3476] bridge0: port 1(bridge_slave_0) entered blocking state [ 761.472996][ T3476] bridge0: port 1(bridge_slave_0) entered forwarding state [ 761.501197][ T3476] bridge0: port 2(bridge_slave_1) entered blocking state [ 761.508363][ T3476] bridge0: port 2(bridge_slave_1) entered forwarding state [ 761.637582][T29032] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 761.988924][T29032] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 762.051286][ T5852] Bluetooth: hci3: command tx timeout [ 762.106396][T29032] veth0_vlan: entered promiscuous mode [ 762.153556][T29032] veth1_vlan: entered promiscuous mode [ 762.219902][T29032] veth0_macvtap: entered promiscuous mode [ 762.245783][T29032] veth1_macvtap: entered promiscuous mode [ 762.292555][T29032] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 762.318035][T29032] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 762.341327][T29032] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 762.368647][T29032] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 762.393558][T29032] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 762.429625][T29032] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 762.458335][T29032] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 762.509715][T29032] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 762.549889][T29032] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 762.588459][T29032] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 762.612998][T29032] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 762.635075][T29032] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 762.656345][T29032] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 762.688562][T29032] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 762.734823][T29032] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 762.759249][T29032] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 762.786399][T29032] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 762.795098][T29032] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 762.993805][ T5112] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 763.018875][ T5112] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 763.106303][ T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 763.128628][ T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 764.365406][T29627] ubi0: attaching mtd0 [ 764.406232][T29627] ubi0: scanning is finished [ 764.454330][T29627] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record [ 764.710911][T29627] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 765.205013][T29650] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 765.429283][T29654] Process accounting paused [ 766.753355][T29698] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 770.782371][T29816] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9795'. [ 773.132062][T29893] openvswitch: netlink: IP tunnel dst address not specified [ 774.500729][T29942] openvswitch: netlink: Message has 4 unknown bytes. [ 775.173899][T29970] program syz.5.9856 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 775.636791][T29982] netlink: 'syz.1.9862': attribute type 1 has an invalid length. [ 776.011828][T29993] svc: failed to register nfsdv3 RPC service (errno 111). [ 776.063589][T29993] svc: failed to register nfsaclv3 RPC service (errno 111). [ 776.123775][T30005] openvswitch: netlink: IP tunnel dst address not specified [ 776.534564][T30017] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 776.679108][T30023] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 777.080052][T30037] openvswitch: netlink: Flow key attr not present in new flow. [ 777.847633][T30064] futex_wake_op: syz.0.9896 tries to shift op by 64; fix this program [ 777.901381][T30066] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 778.371950][T30078] svc: failed to register nfsdv3 RPC service (errno 111). [ 778.413171][T30078] svc: failed to register nfsaclv3 RPC service (errno 111). [ 778.858591][T30098] sd 0:0:1:0: PR command failed: 1026 [ 778.889467][T30098] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 778.929920][T30098] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 780.224358][T30141] netlink: 'syz.1.9924': attribute type 1 has an invalid length. [ 780.807102][T30157] svc: failed to register nfsdv3 RPC service (errno 111). [ 780.864821][T30157] svc: failed to register nfsaclv3 RPC service (errno 111). [ 781.147368][T30176] netlink: 'syz.1.9937': attribute type 11 has an invalid length. [ 781.863752][T30202] sd 0:0:1:0: PR command failed: 1026 [ 781.896551][T30202] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 781.935218][T30202] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 783.125625][T30250] netlink: 'syz.0.9966': attribute type 1 has an invalid length. [ 783.662747][T30273] misc userio: No port type given on /dev/userio [ 784.184567][T30283] batman_adv: Routing algorithm '' is not supported [ 784.235644][T30292] cifs: Unknown parameter 'T.żc[$⁍)UÑnE-ʙl- -_5Z omfwYh*/xDlݩgkǐA79Xa/f_ARxM vp$^;q3n-6+ek rejected, media not registered [ 839.329717][T32289] netlink: 'syz.5.10752': attribute type 1 has an invalid length. [ 839.358870][T32289] nbd: error processing sock list [ 840.899456][T32348] netlink: 'syz.1.10777': attribute type 11 has an invalid length. [ 840.940600][T32348] netlink: 'syz.1.10777': attribute type 11 has an invalid length. [ 840.963041][T32348] netlink: 'syz.1.10777': attribute type 11 has an invalid length. [ 840.988901][T32348] netlink: 'syz.1.10777': attribute type 11 has an invalid length. [ 841.448013][T32369] netlink: 'syz.4.10784': attribute type 1 has an invalid length. [ 841.487687][T32369] nbd: error processing sock list [ 842.481707][ T5112] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 842.601898][ T5112] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 842.682177][ T5112] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 842.849044][ T5112] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 843.336310][ T5112] bridge_slave_1: left allmulticast mode [ 843.376395][ T5112] bridge_slave_1: left promiscuous mode [ 843.416280][ T5112] bridge0: port 2(bridge_slave_1) entered disabled state [ 843.476562][ T5112] bridge_slave_0: left allmulticast mode [ 843.495839][ T5112] bridge_slave_0: left promiscuous mode [ 843.501523][ T5112] bridge0: port 1(bridge_slave_0) entered disabled state [ 843.911095][T24697] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 843.921841][T24697] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 843.930217][T24697] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 843.938556][T24697] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 843.951395][T24697] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 844.764154][ T5112] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 844.797074][ T5112] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 844.807874][ T5112] bond0 (unregistering): Released all slaves [ 844.838578][T32472] netlink: 206 bytes leftover after parsing attributes in process `syz.5.10814'. [ 846.016012][T24697] Bluetooth: hci3: command tx timeout [ 846.434633][T23778] smc: removing net device syz_tun with user defined pnetid ETHTOOL [ 846.598723][T32446] chnl_net:caif_netlink_parms(): no params data found [ 846.857005][ T5112] hsr_slave_0: left promiscuous mode [ 846.878246][ T5112] hsr_slave_1: left promiscuous mode [ 846.895513][ T5112] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 846.910022][ T5112] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 846.931625][ T5112] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 846.950416][ T5112] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 846.984903][ T5112] veth1_macvtap: left promiscuous mode [ 847.007826][ T5112] veth0_macvtap: left promiscuous mode [ 847.013433][ T5112] veth1_vlan: left promiscuous mode [ 847.055566][ T5112] veth0_vlan: left promiscuous mode [ 847.390680][T32665] netlink: ct family unspecified [ 848.008005][ T5852] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 848.024840][ T5852] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 848.035769][ T5852] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 848.048155][ T5852] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 848.057389][ T5852] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 848.085799][T24697] Bluetooth: hci3: command tx timeout [ 848.215236][ T5112] team0 (unregistering): Port device team_slave_1 removed [ 848.255607][ T5112] team0 (unregistering): Port device team_slave_0 removed [ 849.055567][T32446] bridge0: port 1(bridge_slave_0) entered blocking state [ 849.084502][T32446] bridge0: port 1(bridge_slave_0) entered disabled state [ 849.168986][T32446] bridge_slave_0: entered allmulticast mode [ 849.193686][T32446] bridge_slave_0: entered promiscuous mode [ 849.293403][T32446] bridge0: port 2(bridge_slave_1) entered blocking state [ 849.323211][T32446] bridge0: port 2(bridge_slave_1) entered disabled state [ 849.353734][T32446] bridge_slave_1: entered allmulticast mode [ 849.383194][T32446] bridge_slave_1: entered promiscuous mode [ 849.652440][T32446] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 849.731631][T32446] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 850.057430][ T5112] bridge_slave_1: left allmulticast mode [ 850.085763][ T5112] bridge_slave_1: left promiscuous mode [ 850.121500][ T5112] bridge0: port 2(bridge_slave_1) entered disabled state [ 850.159957][ T5852] Bluetooth: hci2: command tx timeout [ 850.166180][T24697] Bluetooth: hci3: command tx timeout [ 850.196675][ T5112] bridge_slave_0: left allmulticast mode [ 850.235627][ T5112] bridge_slave_0: left promiscuous mode [ 850.262918][ T5112] bridge0: port 1(bridge_slave_0) entered disabled state [ 851.263791][ T5112] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 851.330849][ T5112] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 851.399544][ T5112] bond0 (unregistering): Released all slaves [ 851.503068][T32446] team0: Port device team_slave_0 added [ 851.618666][T32446] team0: Port device team_slave_1 added [ 851.711679][ T5112] : left promiscuous mode [ 851.898373][T32446] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 851.933860][T32446] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 852.033252][T32446] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 852.070988][ T5112] HSR: left promiscuous mode [ 852.195871][T32446] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 852.226210][ T5852] Bluetooth: hci2: command tx timeout [ 852.231784][T24697] Bluetooth: hci3: command tx timeout [ 852.254638][T32446] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 852.385453][T32446] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 852.736362][T32446] hsr_slave_0: entered promiscuous mode [ 852.785211][T32446] hsr_slave_1: entered promiscuous mode [ 852.820679][T32446] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 852.858936][T32446] Cannot create hsr debugfs directory [ 852.929450][T32676] chnl_net:caif_netlink_parms(): no params data found [ 853.876916][T32676] bridge0: port 1(bridge_slave_0) entered blocking state [ 853.926153][T32676] bridge0: port 1(bridge_slave_0) entered disabled state [ 853.950103][T32676] bridge_slave_0: entered allmulticast mode [ 853.977274][T32676] bridge_slave_0: entered promiscuous mode [ 854.062634][T32676] bridge0: port 2(bridge_slave_1) entered blocking state [ 854.089911][T32676] bridge0: port 2(bridge_slave_1) entered disabled state [ 854.115496][T32676] bridge_slave_1: entered allmulticast mode [ 854.135679][T32676] bridge_slave_1: entered promiscuous mode [ 854.293596][ T5852] Bluetooth: hci2: command tx timeout [ 854.328895][T32676] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 854.424674][T32676] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 854.741243][T32676] team0: Port device team_slave_0 added [ 854.790866][T32676] team0: Port device team_slave_1 added [ 854.978525][ T5112] hsr_slave_0: left promiscuous mode [ 855.007014][ T5112] hsr_slave_1: left promiscuous mode [ 855.031291][ T5112] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 855.048235][ T5112] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 855.069519][ T5112] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 855.080242][ T5112] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 855.135979][ T5112] veth1_macvtap: left promiscuous mode [ 855.149139][ T5112] veth0_macvtap: left promiscuous mode [ 855.161352][ T5112] veth1_vlan: left promiscuous mode [ 855.177405][ T5112] veth0_vlan: left promiscuous mode [ 855.760191][ T5112] team0 (unregistering): Port device team_slave_1 removed [ 855.800042][ T5112] team0 (unregistering): Port device team_slave_0 removed [ 856.256007][T32676] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 856.280628][T32676] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 856.358221][T32676] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 856.374635][ T5852] Bluetooth: hci2: command tx timeout [ 856.415941][T32676] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 856.444152][T32676] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 856.531414][T32676] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 856.799991][T32446] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 856.873976][T32676] hsr_slave_0: entered promiscuous mode [ 856.922503][T32676] hsr_slave_1: entered promiscuous mode [ 856.953171][T32676] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 856.998508][T32676] Cannot create hsr debugfs directory [ 857.015668][T32446] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 857.058864][T32446] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 857.189965][T32446] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 857.471916][ T952] netlink: 206 bytes leftover after parsing attributes in process `syz.1.10899'. [ 857.724308][T32446] 8021q: adding VLAN 0 to HW filter on device bond0 [ 857.900969][T32446] 8021q: adding VLAN 0 to HW filter on device team0 [ 858.013913][ T3476] bridge0: port 1(bridge_slave_0) entered blocking state [ 858.021070][ T3476] bridge0: port 1(bridge_slave_0) entered forwarding state [ 858.085699][ T3476] bridge0: port 2(bridge_slave_1) entered blocking state [ 858.092871][ T3476] bridge0: port 2(bridge_slave_1) entered forwarding state [ 858.287302][T32446] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 858.635479][T32676] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 858.727733][T32676] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 858.779293][T32676] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 858.805312][T32676] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 859.110756][T32446] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 859.299888][T32676] 8021q: adding VLAN 0 to HW filter on device bond0 [ 859.425758][T32676] 8021q: adding VLAN 0 to HW filter on device team0 [ 859.523816][ T5112] bridge0: port 1(bridge_slave_0) entered blocking state [ 859.530926][ T5112] bridge0: port 1(bridge_slave_0) entered forwarding state [ 859.611286][ T5112] bridge0: port 2(bridge_slave_1) entered blocking state [ 859.618474][ T5112] bridge0: port 2(bridge_slave_1) entered forwarding state [ 860.214987][T32446] veth0_vlan: entered promiscuous mode [ 860.312092][T32446] veth1_vlan: entered promiscuous mode [ 860.465587][T32446] veth0_macvtap: entered promiscuous mode [ 860.540011][T32446] veth1_macvtap: entered promiscuous mode [ 860.640620][T32676] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 860.716407][T32446] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 860.793081][T32446] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 860.838082][T32446] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 860.884806][T32446] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 860.929847][T32446] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 861.003551][T32446] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 861.043875][T32446] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 861.087684][T32446] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 861.126445][T32446] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 861.180457][T32446] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 861.266911][T32446] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 861.323147][T32446] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 861.373099][T32446] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 861.381835][T32446] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 861.749867][T32676] veth0_vlan: entered promiscuous mode [ 861.855555][T32676] veth1_vlan: entered promiscuous mode [ 861.972072][T25892] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 862.040242][T25892] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 862.131076][T32676] veth0_macvtap: entered promiscuous mode [ 862.191015][T32676] veth1_macvtap: entered promiscuous mode [ 862.231002][ T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 862.273653][ T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 862.310652][T32676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 862.357239][T32676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 862.387180][T32676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 862.431882][T32676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 862.470714][T32676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 862.505779][T32676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 862.559868][T32676] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 862.621971][T32676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 862.680065][T32676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 862.731766][T32676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 862.775797][T32676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 862.845314][T32676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 862.887434][T32676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 862.937880][T32676] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 863.013647][T32676] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 863.076086][T32676] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 863.121333][T32676] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 863.175227][T32676] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 863.466376][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 863.541555][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 863.683347][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 863.776409][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 871.727769][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 871.736658][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 927.288626][ T5211] udevd[5211]: worker [422] /devices/pci0000:00/0000:00:03.0/virtio0/host0/target0:0:1/0:0:1:0/block/sda is taking a long time [ 932.846773][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 932.857038][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 965.481933][T24697] Bluetooth: hci3: command 0x0406 tx timeout [ 970.567014][ T5852] Bluetooth: hci2: command 0x0406 tx timeout [ 993.975183][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 993.981490][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 1012.428004][ T31] INFO: task dhcpcd:5505 blocked for more than 143 seconds. [ 1012.435321][ T31] Tainted: G U 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 [ 1012.450389][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1012.461555][ T31] task:dhcpcd state:D stack:23144 pid:5505 tgid:5505 ppid:5504 task_flags:0x400140 flags:0x00000002 [ 1012.474730][ T31] Call Trace: [ 1012.479663][ T31] [ 1012.482748][ T31] __schedule+0x116f/0x5de0 [ 1012.488741][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 1012.493701][ T31] ? __pfx___schedule+0x10/0x10 [ 1012.502129][ T31] ? find_held_lock+0x2b/0x80 [ 1012.510677][ T31] ? schedule+0x2d7/0x3a0 [ 1012.515026][ T31] schedule+0xe7/0x3a0 [ 1012.521970][ T31] io_schedule+0xbf/0x130 [ 1012.526342][ T31] bit_wait_io+0x15/0xe0 [ 1012.531506][ T31] __wait_on_bit+0x62/0x180 [ 1012.536026][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 1012.542680][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 1012.548738][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 1012.554735][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 1012.561947][ T31] ? __pfx___might_resched+0x10/0x10 [ 1012.569449][ T31] ? ext4_bread_batch+0x151/0x510 [ 1012.574501][ T31] __wait_on_buffer+0x64/0x70 [ 1012.580892][ T31] __ext4_find_entry+0x97b/0x11c0 [ 1012.585956][ T31] ? __pfx___ext4_find_entry+0x10/0x10 [ 1012.595832][ T31] ? __pfx_ext4_fname_prepare_lookup+0x10/0x10 [ 1012.604603][ T31] ? find_held_lock+0x2b/0x80 [ 1012.613004][ T31] ? d_alloc_parallel+0x6ae/0x12e0 [ 1012.621023][ T31] ext4_lookup+0x53d/0x730 [ 1012.625454][ T31] ? __pfx_ext4_lookup+0x10/0x10 [ 1012.632267][ T31] ? find_held_lock+0x2b/0x80 [ 1012.638614][ T31] ? __pfx_ext4_lookup+0x10/0x10 [ 1012.643560][ T31] lookup_open.isra.0+0x4d7/0x1580 [ 1012.649517][ T31] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 1012.655137][ T31] ? lookup_fast+0x156/0x610 [ 1012.661538][ T31] path_openat+0x905/0x2d40 [ 1012.667851][ T31] ? __pfx_path_openat+0x10/0x10 [ 1012.672806][ T31] do_filp_open+0x20b/0x470 [ 1012.679298][ T31] ? __pfx_do_filp_open+0x10/0x10 [ 1012.684349][ T31] ? alloc_fd+0x471/0x7d0 [ 1012.689438][ T31] do_sys_openat2+0x11b/0x1d0 [ 1012.694128][ T31] ? __pfx_do_sys_openat2+0x10/0x10 [ 1012.701290][ T31] __x64_sys_openat+0x174/0x210 [ 1012.707641][ T31] ? __pfx___x64_sys_openat+0x10/0x10 [ 1012.714148][ T31] ? ksys_read+0x1b9/0x240 [ 1012.723058][ T31] ? rcu_is_watching+0x12/0xc0 [ 1012.729093][ T31] do_syscall_64+0xcd/0x230 [ 1012.733615][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1012.742490][ T31] RIP: 0033:0x7febaaf989a4 [ 1012.748766][ T31] RSP: 002b:00007ffc6c667090 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1012.758932][ T31] RAX: ffffffffffffffda RBX: 00000000000100a0 RCX: 00007febaaf989a4 [ 1012.768899][ T31] RDX: 0000000000000000 RSI: 00007ffc6c677328 RDI: 00000000ffffff9c [ 1012.778683][ T31] RBP: 00007ffc6c677328 R08: 0000000000000000 R09: 00007ffc6c677298 [ 1012.787483][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1012.797411][ T31] R13: 00007ffc6c6671a8 R14: 00007ffc6c6671a8 R15: 0000000000000000 [ 1012.806104][ T31] [ 1012.809171][ T31] INFO: task syz-executor:5834 blocked for more than 143 seconds. [ 1012.820753][ T31] Tainted: G U 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 [ 1012.837183][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1012.847828][ T31] task:syz-executor state:D stack:23112 pid:5834 tgid:5834 ppid:5832 task_flags:0x440100 flags:0x00000002 [ 1012.861627][ T31] Call Trace: [ 1012.865623][ T31] [ 1012.869198][ T31] __schedule+0x116f/0x5de0 [ 1012.874496][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 1012.881282][ T31] ? __pfx___schedule+0x10/0x10 [ 1012.886868][ T31] ? find_held_lock+0x2b/0x80 [ 1012.891567][ T31] ? schedule+0x2d7/0x3a0 [ 1012.897981][ T31] schedule+0xe7/0x3a0 [ 1012.902082][ T31] io_schedule+0xbf/0x130 [ 1012.907731][ T31] bit_wait_io+0x15/0xe0 [ 1012.912009][ T31] __wait_on_bit+0x62/0x180 [ 1012.919888][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 1012.926709][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 1012.932115][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 1012.943045][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 1012.950020][ T31] do_get_write_access+0x93d/0x12a0 [ 1012.958609][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 1012.965411][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 1012.972823][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 1012.980361][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 1012.986671][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1012.992087][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 1013.000007][ T31] ? rcu_is_watching+0x12/0xc0 [ 1013.005657][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 1013.011314][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 1013.020015][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 1013.026491][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 1013.032165][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 1013.040002][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 1013.049005][ T31] ext4_dirty_inode+0xd9/0x130 [ 1013.053791][ T31] ? rcu_is_watching+0x12/0xc0 [ 1013.061180][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 1013.071066][ T31] generic_update_time+0xcf/0xf0 [ 1013.078977][ T31] file_update_time+0x17d/0x1c0 [ 1013.084618][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 1013.089662][ T31] ? tcp_recvmsg+0x1f9/0x680 [ 1013.096059][ T31] ? __pfx_tcp_recvmsg+0x10/0x10 [ 1013.101025][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 1013.107259][ T31] ? vm_normal_page+0x13b/0x2b0 [ 1013.112132][ T31] ? find_held_lock+0x2b/0x80 [ 1013.119869][ T31] ? find_held_lock+0x2b/0x80 [ 1013.125598][ T31] do_page_mkwrite+0x171/0x380 [ 1013.130387][ T31] do_wp_page+0xb9e/0x58e0 [ 1013.136623][ T31] ? __pfx_do_wp_page+0x10/0x10 [ 1013.141496][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 1013.149027][ T31] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 1013.158557][ T31] ? ___pte_offset_map+0x1bc/0x540 [ 1013.164987][ T31] __handle_mm_fault+0x1ada/0x2a40 [ 1013.170118][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 1013.179815][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1013.185792][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1013.191041][ T31] handle_mm_fault+0x3fe/0xad0 [ 1013.197695][ T31] do_user_addr_fault+0x60c/0x1370 [ 1013.202831][ T31] exc_page_fault+0x5c/0xc0 [ 1013.208131][ T31] asm_exc_page_fault+0x26/0x30 [ 1013.213021][ T31] RIP: 0033:0x7f2406a775ef [ 1013.220426][ T31] RSP: 002b:00007ffd88ebf680 EFLAGS: 00010202 [ 1013.227965][ T31] RAX: 00007f2405424000 RBX: 0000555590cb7f20 RCX: 0000000000000005 [ 1013.238086][ T31] RDX: 1ffffffff098eefd RSI: 0000555590cb7da8 RDI: 0000000000000020 [ 1013.246869][ T31] RBP: 00007ffd88ebf970 R08: 0000555590cb7e18 R09: 0000000000001ddf [ 1013.257450][ T31] R10: 0000000000000001 R11: 00007ffd88ebfb80 R12: 00007ffd88ebf9d0 [ 1013.268797][ T31] R13: 0000000000000004 R14: 00007ffd88ebf6f0 R15: 00007ffd88ebf7c0 [ 1013.280308][ T31] [ 1013.285383][ T31] INFO: task syz.6.10995:1366 blocked for more than 144 seconds. [ 1013.295028][ T31] Tainted: G U 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 [ 1013.305055][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1013.315611][ T31] task:syz.6.10995 state:D stack:28632 pid:1366 tgid:1366 ppid:32446 task_flags:0x440040 flags:0x00000004 [ 1013.329545][ T31] Call Trace: [ 1013.334656][ T31] [ 1013.337601][ T31] __schedule+0x116f/0x5de0 [ 1013.342138][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 1013.348257][ T31] ? __pfx___schedule+0x10/0x10 [ 1013.355067][ T31] ? find_held_lock+0x2b/0x80 [ 1013.359762][ T31] ? schedule+0x2d7/0x3a0 [ 1013.365920][ T31] schedule+0xe7/0x3a0 [ 1013.370014][ T31] io_schedule+0xbf/0x130 [ 1013.380003][ T31] bit_wait_io+0x15/0xe0 [ 1013.385593][ T31] __wait_on_bit+0x62/0x180 [ 1013.390120][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 1013.398288][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 1013.404376][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 1013.410372][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 1013.417524][ T31] do_get_write_access+0x93d/0x12a0 [ 1013.424459][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 1013.430459][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 1013.438376][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 1013.444636][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 1013.450104][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1013.457264][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 1013.464131][ T31] ? rcu_is_watching+0x12/0xc0 [ 1013.468913][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 1013.477342][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 1013.486778][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 1013.494717][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 1013.500459][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 1013.507418][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 1013.514581][ T31] ext4_dirty_inode+0xd9/0x130 [ 1013.519355][ T31] ? rcu_is_watching+0x12/0xc0 [ 1013.525988][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 1013.531076][ T31] generic_update_time+0xcf/0xf0 [ 1013.537857][ T31] file_update_time+0x17d/0x1c0 [ 1013.545224][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 1013.550271][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 1013.557615][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 1013.563813][ T31] ? pte_alloc_one+0x2b1/0x380 [ 1013.568612][ T31] do_page_mkwrite+0x171/0x380 [ 1013.575097][ T31] do_pte_missing+0x29c/0x3fb0 [ 1013.579868][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 1013.587965][ T31] ? __pmd_alloc+0x3c2/0x870 [ 1013.596379][ T31] __handle_mm_fault+0x103d/0x2a40 [ 1013.603722][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 1013.609197][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1013.617312][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1013.627699][ T31] handle_mm_fault+0x3fe/0xad0 [ 1013.634088][ T31] do_user_addr_fault+0x60c/0x1370 [ 1013.639217][ T31] exc_page_fault+0x5c/0xc0 [ 1013.644502][ T31] asm_exc_page_fault+0x26/0x30 [ 1013.649374][ T31] RIP: 0033:0x7f4599864c9b [ 1013.655544][ T31] RSP: 002b:00007fffdeffd700 EFLAGS: 00010246 [ 1013.662301][ T31] RAX: 00000000005ffde8 RBX: 0000000000000000 RCX: 0000000000000000 [ 1013.670276][ T31] RDX: 0000001b2d220000 RSI: 0000000000600000 RDI: 00007f4599a98eb0 [ 1013.679949][ T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000 [ 1013.689957][ T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1013.704096][ T31] R13: 00000000000927c0 R14: 00000000000d4e92 R15: 00007fffdeffd9b0 [ 1013.714375][ T31] [ 1013.717436][ T31] INFO: task syz.7.10987:1368 blocked for more than 144 seconds. [ 1013.727460][ T31] Tainted: G U 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 [ 1013.739590][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1013.748910][ T31] task:syz.7.10987 state:D stack:28632 pid:1368 tgid:1368 ppid:32676 task_flags:0x440040 flags:0x00000004 [ 1013.762984][ T31] Call Trace: [ 1013.766269][ T31] [ 1013.769201][ T31] __schedule+0x116f/0x5de0 [ 1013.774129][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 1013.779099][ T31] ? __pfx___schedule+0x10/0x10 [ 1013.788581][ T31] ? find_held_lock+0x2b/0x80 [ 1013.793467][ T31] ? schedule+0x2d7/0x3a0 [ 1013.797815][ T31] schedule+0xe7/0x3a0 [ 1013.806053][ T31] io_schedule+0xbf/0x130 [ 1013.812840][ T31] bit_wait_io+0x15/0xe0 [ 1013.817105][ T31] __wait_on_bit+0x62/0x180 [ 1013.824443][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 1013.829401][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 1013.837518][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 1013.845757][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 1013.851538][ T31] do_get_write_access+0x93d/0x12a0 [ 1013.856773][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 1013.867608][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 1013.874218][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 1013.882152][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 1013.888247][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1013.894773][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 1013.903187][ T31] ? rcu_is_watching+0x12/0xc0 [ 1013.907976][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 1013.914814][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 1013.924802][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 1013.931481][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 1013.938432][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 1013.947739][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 1013.953355][ T31] ext4_dirty_inode+0xd9/0x130 [ 1013.958157][ T31] ? rcu_is_watching+0x12/0xc0 [ 1013.965267][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 1013.970542][ T31] generic_update_time+0xcf/0xf0 [ 1013.975496][ T31] file_update_time+0x17d/0x1c0 [ 1013.982766][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 1013.987826][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 1013.994857][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 1014.002567][ T31] ? pte_alloc_one+0x2b1/0x380 [ 1014.007353][ T31] do_page_mkwrite+0x171/0x380 [ 1014.012446][ T31] do_pte_missing+0x29c/0x3fb0 [ 1014.017220][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 1014.025594][ T31] ? __pmd_alloc+0x3c2/0x870 [ 1014.032788][ T31] __handle_mm_fault+0x103d/0x2a40 [ 1014.042169][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 1014.047653][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1014.055139][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1014.062536][ T31] handle_mm_fault+0x3fe/0xad0 [ 1014.067316][ T31] do_user_addr_fault+0x60c/0x1370 [ 1014.072828][ T31] exc_page_fault+0x5c/0xc0 [ 1014.077357][ T31] asm_exc_page_fault+0x26/0x30 [ 1014.084422][ T31] RIP: 0033:0x7fbc16064c9b [ 1014.089064][ T31] RSP: 002b:00007ffeaeecbb40 EFLAGS: 00010246 [ 1014.096316][ T31] RAX: 00000000005ffde8 RBX: 0000000000000000 RCX: 0000000000000000 [ 1014.108616][ T31] RDX: 0000001b2cd20000 RSI: 0000000000600000 RDI: 00007fbc16298eb0 [ 1014.116622][ T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000 [ 1014.126940][ T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1014.137052][ T31] R13: 00000000000927c0 R14: 00000000000d4ecb R15: 00007ffeaeecbdf0 [ 1014.149288][ T31] [ 1014.153469][ T31] INFO: task syz.1.10988:1369 blocked for more than 145 seconds. [ 1014.163850][ T31] Tainted: G U 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 [ 1014.180089][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1014.189524][ T31] task:syz.1.10988 state:D stack:28632 pid:1369 tgid:1369 ppid:5846 task_flags:0x440040 flags:0x00000004 [ 1014.204095][ T31] Call Trace: [ 1014.207379][ T31] [ 1014.211068][ T31] __schedule+0x116f/0x5de0 [ 1014.215611][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 1014.222388][ T31] ? __pfx___schedule+0x10/0x10 [ 1014.227283][ T31] ? find_held_lock+0x2b/0x80 [ 1014.232753][ T31] ? schedule+0x2d7/0x3a0 [ 1014.237100][ T31] schedule+0xe7/0x3a0 [ 1014.244843][ T31] io_schedule+0xbf/0x130 [ 1014.251831][ T31] bit_wait_io+0x15/0xe0 [ 1014.256182][ T31] __wait_on_bit+0x62/0x180 [ 1014.263720][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 1014.271171][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 1014.276568][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 1014.284269][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 1014.290429][ T31] do_get_write_access+0x93d/0x12a0 [ 1014.296765][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 1014.304598][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 1014.311371][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 1014.316930][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 1014.324020][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1014.329607][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 1014.335598][ T31] ? rcu_is_watching+0x12/0xc0 [ 1014.346169][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 1014.352836][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 1014.362182][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 1014.369034][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 1014.374692][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 1014.383467][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 1014.389145][ T31] ext4_dirty_inode+0xd9/0x130 [ 1014.393913][ T31] ? rcu_is_watching+0x12/0xc0 [ 1014.402061][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 1014.407318][ T31] generic_update_time+0xcf/0xf0 [ 1014.412266][ T31] file_update_time+0x17d/0x1c0 [ 1014.419386][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 1014.424431][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 1014.430176][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 1014.435652][ T31] ? pte_alloc_one+0x2b1/0x380 [ 1014.444146][ T31] do_page_mkwrite+0x171/0x380 [ 1014.449148][ T31] do_pte_missing+0x29c/0x3fb0 [ 1014.453921][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 1014.462027][ T31] ? __pmd_alloc+0x3c2/0x870 [ 1014.468626][ T31] __handle_mm_fault+0x103d/0x2a40 [ 1014.473755][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 1014.482468][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1014.489169][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1014.494404][ T31] handle_mm_fault+0x3fe/0xad0 [ 1014.502411][ T31] do_user_addr_fault+0x60c/0x1370 [ 1014.507738][ T31] exc_page_fault+0x5c/0xc0 [ 1014.512254][ T31] asm_exc_page_fault+0x26/0x30 [ 1014.519277][ T31] RIP: 0033:0x7f1c91864c9b [ 1014.523696][ T31] RSP: 002b:00007ffd6c05be30 EFLAGS: 00010246 [ 1014.530139][ T31] RAX: 00000000005ffde8 RBX: 0000000000000000 RCX: 0000000000000000 [ 1014.540235][ T31] RDX: 0000001b30d20000 RSI: 0000000000600000 RDI: 00007f1c91a98eb0 [ 1014.549517][ T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000 [ 1014.559658][ T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1014.568616][ T31] R13: 00000000000927c0 R14: 00000000000d4eff R15: 00007ffd6c05c0e0 [ 1014.581752][ T31] [ 1014.584850][ T31] INFO: task syz.5.10989:1370 blocked for more than 145 seconds. [ 1014.594000][ T31] Tainted: G U 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 [ 1014.608592][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1014.617502][ T31] task:syz.5.10989 state:D stack:27560 pid:1370 tgid:1370 ppid:14248 task_flags:0x440040 flags:0x00000004 [ 1014.631628][ T31] Call Trace: [ 1014.634915][ T31] [ 1014.638173][ T31] __schedule+0x116f/0x5de0 [ 1014.642702][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 1014.651114][ T31] ? __pfx___schedule+0x10/0x10 [ 1014.659803][ T31] ? find_held_lock+0x2b/0x80 [ 1014.664495][ T31] ? schedule+0x2d7/0x3a0 [ 1014.671139][ T31] schedule+0xe7/0x3a0 [ 1014.675250][ T31] io_schedule+0xbf/0x130 [ 1014.680731][ T31] bit_wait_io+0x15/0xe0 [ 1014.685010][ T31] __wait_on_bit+0x62/0x180 [ 1014.693857][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 1014.700312][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 1014.710342][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 1014.716959][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 1014.722447][ T31] do_get_write_access+0x93d/0x12a0 [ 1014.730182][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 1014.736519][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 1014.742612][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 1014.752115][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 1014.757831][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1014.763229][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 1014.771672][ T31] ? rcu_is_watching+0x12/0xc0 [ 1014.776664][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 1014.782339][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 1014.790811][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 1014.799374][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 1014.809071][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 1014.814029][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 1014.821975][ T31] ext4_dirty_inode+0xd9/0x130 [ 1014.829318][ T31] ? rcu_is_watching+0x12/0xc0 [ 1014.834095][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 1014.839471][ T31] generic_update_time+0xcf/0xf0 [ 1014.844426][ T31] file_update_time+0x17d/0x1c0 [ 1014.852738][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 1014.859745][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 1014.867519][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 1014.873138][ T31] ? pte_alloc_one+0x2b1/0x380 [ 1014.878260][ T31] do_page_mkwrite+0x171/0x380 [ 1014.883076][ T31] do_pte_missing+0x29c/0x3fb0 [ 1014.890238][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 1014.898306][ T31] ? __pmd_alloc+0x3c2/0x870 [ 1014.902928][ T31] __handle_mm_fault+0x103d/0x2a40 [ 1014.915392][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 1014.920881][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1014.929489][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 1014.935279][ T31] handle_mm_fault+0x3fe/0xad0 [ 1014.940070][ T31] do_user_addr_fault+0x60c/0x1370 [ 1014.947378][ T31] exc_page_fault+0x5c/0xc0 [ 1014.953251][ T31] asm_exc_page_fault+0x26/0x30 [ 1014.958340][ T31] RIP: 0033:0x7fc89bc64c9b [ 1014.962756][ T31] RSP: 002b:00007ffc22e94f40 EFLAGS: 00010246 [ 1014.970922][ T31] RAX: 00000000005ffde8 RBX: 0000000000000000 RCX: 0000000000000000 [ 1014.979200][ T31] RDX: 0000001b2cd20000 RSI: 0000000000600000 RDI: 00007fc89be98eb0 [ 1014.989445][ T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000 [ 1014.997627][ T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1015.007656][ T31] R13: 00000000000927c0 R14: 00000000000d4ec6 R15: 00007ffc22e951f0 [ 1015.020684][ T31] [ 1015.024589][ T31] [ 1015.024589][ T31] Showing all locks held in the system: [ 1015.032302][ T31] 1 lock held by khungtaskd/31: [ 1015.041087][ T31] #0: ffffffff8e3bf440 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 1015.051622][ T31] 1 lock held by dhcpcd/5505: [ 1015.059540][ T31] #0: ffff8880123c35c0 (&type->i_mutex_dir_key#3){++++}-{4:4}, at: path_openat+0x88a/0x2d40 [ 1015.069993][ T31] 3 locks held by syz-executor/5834: [ 1015.077678][ T31] #0: ffff8880233df808 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 1015.087240][ T31] #1: ffff88802e864518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 1015.098933][ T31] #2: ffff88802ea28950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 1015.108730][ T31] 3 locks held by syz.6.10995/1366: [ 1015.118237][ T31] #0: ffff888062170588 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 1015.130542][ T31] #1: ffff88802e864518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 1015.144812][ T31] #2: ffff88802ea28950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 1015.157841][ T31] 3 locks held by syz.7.10987/1368: [ 1015.163748][ T31] #0: ffff88802e06c088 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 1015.174663][ T31] #1: ffff88802e864518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 1015.184804][ T31] #2: ffff88802ea28950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 1015.196281][ T31] 3 locks held by syz.1.10988/1369: [ 1015.201473][ T31] #0: ffff888031d74a88 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 1015.212345][ T31] #1: ffff88802e864518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 1015.226858][ T31] #2: ffff88802ea28950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 1015.239437][ T31] 3 locks held by syz.5.10989/1370: [ 1015.247736][ T31] #0: ffff88803518b308 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 1015.260128][ T31] #1: ffff88802e864518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 1015.272425][ T31] #2: ffff88802ea28950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 1015.282038][ T31] 2 locks held by getty/1372: [ 1015.288877][ T31] #0: ffff8880317ad0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 1015.299252][ T31] #1: ffffc90004ac32f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0 [ 1015.311443][ T31] [ 1015.315142][ T31] ============================================= [ 1015.315142][ T31] [ 1015.325673][ T31] NMI backtrace for cpu 0 [ 1015.325689][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G U 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) [ 1015.325717][ T31] Tainted: [U]=USER [ 1015.325723][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1015.325734][ T31] Call Trace: [ 1015.325740][ T31] [ 1015.325746][ T31] dump_stack_lvl+0x116/0x1f0 [ 1015.325776][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 1015.325799][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 1015.325818][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 1015.325843][ T31] watchdog+0xf70/0x12c0 [ 1015.325874][ T31] ? __pfx_watchdog+0x10/0x10 [ 1015.325900][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 1015.325928][ T31] ? __kthread_parkme+0x19e/0x250 [ 1015.325954][ T31] ? __pfx_watchdog+0x10/0x10 [ 1015.325981][ T31] kthread+0x3c2/0x780 [ 1015.326010][ T31] ? __pfx_kthread+0x10/0x10 [ 1015.326043][ T31] ? __pfx_kthread+0x10/0x10 [ 1015.326071][ T31] ? __pfx_kthread+0x10/0x10 [ 1015.326099][ T31] ? __pfx_kthread+0x10/0x10 [ 1015.326126][ T31] ? rcu_is_watching+0x12/0xc0 [ 1015.326146][ T31] ? __pfx_kthread+0x10/0x10 [ 1015.326176][ T31] ret_from_fork+0x45/0x80 [ 1015.326194][ T31] ? __pfx_kthread+0x10/0x10 [ 1015.326222][ T31] ret_from_fork_asm+0x1a/0x30 [ 1015.326263][ T31] [ 1015.326272][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 1015.464195][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G U 6.15.0-rc3-syzkaller-00001-g9d7a0577c9db #0 PREEMPT(full) [ 1015.477560][ T31] Tainted: [U]=USER [ 1015.481353][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1015.491399][ T31] Call Trace: [ 1015.494668][ T31] [ 1015.497604][ T31] dump_stack_lvl+0x3d/0x1f0 [ 1015.502208][ T31] panic+0x71c/0x800 [ 1015.506129][ T31] ? __pfx_panic+0x10/0x10 [ 1015.510553][ T31] ? ret_from_fork_asm+0x1a/0x30 [ 1015.515611][ T31] ? nmi_backtrace_stall_check+0x6e/0x540 [ 1015.521345][ T31] ? irq_work_queue+0xce/0x100 [ 1015.526118][ T31] ? watchdog+0xdda/0x12c0 [ 1015.530544][ T31] ? watchdog+0xdcd/0x12c0 [ 1015.534973][ T31] watchdog+0xdeb/0x12c0 [ 1015.539232][ T31] ? __pfx_watchdog+0x10/0x10 [ 1015.543922][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 1015.549145][ T31] ? __kthread_parkme+0x19e/0x250 [ 1015.554190][ T31] ? __pfx_watchdog+0x10/0x10 [ 1015.558877][ T31] kthread+0x3c2/0x780 [ 1015.562958][ T31] ? __pfx_kthread+0x10/0x10 [ 1015.567571][ T31] ? __pfx_kthread+0x10/0x10 [ 1015.572191][ T31] ? __pfx_kthread+0x10/0x10 [ 1015.576807][ T31] ? __pfx_kthread+0x10/0x10 [ 1015.581406][ T31] ? rcu_is_watching+0x12/0xc0 [ 1015.586170][ T31] ? __pfx_kthread+0x10/0x10 [ 1015.590773][ T31] ret_from_fork+0x45/0x80 [ 1015.595188][ T31] ? __pfx_kthread+0x10/0x10 [ 1015.599792][ T31] ret_from_fork_asm+0x1a/0x30 [ 1015.604577][ T31] [ 1015.607637][ T31] Kernel Offset: disabled [ 1015.611967][ T31] Rebooting in 86400 seconds..